CVE-2025-36033MEDIUMCVSS 5.4≥ 7.0.3, ≤ 7.0.3 Interim Fix 017·≥ 7.1.0, ≤ 7.1.0 Interim Fix 0042026-02-03
CVE-2025-36033 [MEDIUM] CWE-79 CVE-2025-36033: IBM Engineering Lifecycle Management - Global Configuration Management 7.0.3 through 7.0.3 Interim F
IBM Engineering Lifecycle Management - Global Configuration Management 7.0.3 through 7.0.3 Interim Fix 017, and 7.1.0 through 7.1.0 Interim Fix 004 IBM Global Configuration Management is vulnerable to cross-site scripting. This vulnerability allows an authenticated user to embed arbitrary JavaScript code in the Web UI thus altering the intended funct
cvelistv5nvd