CVE-2024-52890
published 2025-08-05CVE-2024-52890: IBM Engineering Lifecycle Optimization - Publishing 7.0.2 and 7.03 could be susceptible to cross-site scripting due to no validation of URIs.
medium6.1CVSS 3.1
AVNACLPRNUIRSCCLILAN
IBM Engineering Lifecycle Optimization - Publishing 7.0.2 and 7.03 could be susceptible to cross-site scripting due to no validation of URIs.
Affected
4 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| ibm | engineering_lifecycle_optimization | — | — |
| ibm | engineering_lifecycle_optimization | — | — |
| ibm | ibm_engineering_lifecycle_optimization_publishing | — | — |
| ibm | ibm_engineering_lifecycle_optimization_publishing | — | — |