cbcvebase.
CVE-2025-1551
published 2025-04-29

CVE-2025-1551: IBM Operational Decision Manager 8.11.0.1, 8.11.1.0, 8.12.0.1, and 9.0.0.1 is vulnerable to cross-site scripting. This vulnerability allows an unauthenticated…

medium6.1CVSS 3.1
AVNACLPRNUIRSCCLILAN
IBM Operational Decision Manager 8.11.0.1, 8.11.1.0, 8.12.0.1, and 9.0.0.1 is vulnerable to cross-site scripting. This vulnerability allows an unauthenticated attacker to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a trusted session.

Affected

4 ranges
VendorProductVersion rangeFixed in
ibmoperational_decision_manager
ibmoperational_decision_manager
ibmoperational_decision_manager
ibmoperational_decision_manager