CVE-2023-47144

CVSS 3.1 Score 6.1 of 10 (medium)

Details

Published Feb 2, 2024

Updated: Feb 8, 2024

CWE ID 79

Summary

CVE-2023-47144 is a cross-site scripting (XSS) vulnerability affecting IBM Tivoli Application Dependency Discovery Manager versions 7.3.0.0 through 7.3.0.10. This issue permits users to inject malicious JavaScript code into the Web UI, resulting in altered functionality. The consequences of this vulnerability could include the disclosure of sensitive credentials within trusted sessions. (IBM X-Force ID: 270271)

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

IBM Tivoli Application Dependency Discovery Manager

Affected Vendors

IBM Corporation

Advisories, Assessments, and Mitigations

https://app.recordedfuture.com/live/sc/entity/tNkzSA
https://www.cve.org/CVERecord?id=CVE-2023-47144
https://nvd.nist.gov/vuln/detail/CVE-2023-47144

Back to Vulnerability Database