Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
IBM Security Secret Server 10.7 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a trusted session. IBM X-Force ID: 177514.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
IBM Security Secret Server 跨站脚本漏洞
Vulnerability Description
IBM Security Secret Server是美国IBM公司的一套特权访问管理解决方案。该产品支持密码管理、特权账号识别和特权会话访问监控记录等功能。 IBM Security Secret Server(全部版本)中存在跨站脚本漏洞。攻击者可利用该漏洞在Web UI中嵌入任意JavaScript代码,进而更改功能,获取可信会话中的凭据。
CVSS Information
N/A
Vulnerability Type
N/A