Medium Severity

Security Bulletin: IBM WebSphere Application Server Liberty XSS Vulnerabilities Affect IBM Control Center (CVE-2020-4303, CVE-2020-4304)

Share this post:

IBM Control Center (WebSphere Application Server_ – Liberty is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a trusted session.

Affected product(s) and affected version(s):

Affected Product(s) Version(s)
IBM Control Center 6.1.3.0
IBM Control Center 6.1.2.1
IBM Control Center 6.0.0.2

Refer to the following reference URLs for remediation and additional vulnerability details:  
Source Bulletin: https://www.ibm.com/support/pages/node/6249993

More stories

Security Bulletin: User Behavior Analytics application add on to IBM QRadar SIEM performs improper CSRF checking for some components ( CVE-2021-29757)

Jul 30, 2021 8:39 pm EDT | Medium Severity

User Behavior Analytics application add on to IBM QRadar SIEM performs improper CSRF checking for some components. ...read more


Security Bulletin: October 2020 Patch Update for Java

Jul 30, 2021 8:13 pm EDT | Medium Severity

The October 2020 update to Java contains fixes for a number of potential vulnerabilities. Refer to the Details section for additional information. ...read more


Security Bulletin: Vulnerabilities in Java and WLP affects IBM Cloud Application Business Insights

Jul 29, 2021 8:08 pm EDT | Medium Severity

Vulnerabilities in Java and WLP affects IBM Cloud Application Business Insights ...read more