CVE-2015-8531
published 2016-02-15CVE-2015-8531: Cross-site scripting (XSS) vulnerability in IBM Security Access Manager for Web 8.0 before 8.0.1.3 IF4 and 9.0 before 9.0.0.1 IF1 allows remote attackers to…
medium6.1CVSS 3.0
AVNACLPRNUIRSCCLILAN
Cross-site scripting (XSS) vulnerability in IBM Security Access Manager for Web 8.0 before 8.0.1.3 IF4 and 9.0 before 9.0.0.1 IF1 allows remote attackers to inject arbitrary web script or HTML via a crafted URL.
Affected
8 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| ibm | security_access_manager_9.0_firmware | — | — |
| ibm | security_access_manager_for_web_8.0_firmware | — | — |
| ibm | security_access_manager_for_web_8.0_firmware | — | — |
| ibm | security_access_manager_for_web_8.0_firmware | — | — |
| ibm | security_access_manager_for_web_8.0_firmware | — | — |
| ibm | security_access_manager_for_web_8.0_firmware | — | — |
| ibm | security_access_manager_for_web_8.0_firmware | — | — |
| ibm | security_access_manager_for_web_8.0_firmware | — | — |