CVE-2023-46174

CVSS 3.1 Score 5.4 of 10 (medium)

Details

Published Dec 1, 2023

Updated: Dec 4, 2023

CWE ID 79

Summary

CVE-2023-46174 is a cross-site scripting (XSS) vulnerability affecting IBM InfoSphere Information Server 11.7. This issue enables users to inject malicious JavaScript code into the Web UI, potentially altering functionality and leading to credential disclosure within a trusted session. IBM X-Force has assigned ID 269506 to this vulnerability.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

IBM Infosphere Information Server

Affected Vendors

IBM Corporation

Advisories, Assessments, and Mitigations

https://app.recordedfuture.com/live/sc/entity/tDE9Nt
https://www.cve.org/CVERecord?id=CVE-2023-46174
https://nvd.nist.gov/vuln/detail/CVE-2023-46174

Back to Vulnerability Database