CVE-2017-1096 is a vulnerability in IBM Jazz Reporting Service
Published on July 5, 2017

IBM Jazz Reporting Service (JRS) 5.0 and 6.0 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a trusted session. IBM X-Force ID: 120656.

NVD

Products Associated with CVE-2017-1096

Want to know whenever a new CVE is published for IBM Jazz Reporting Service? stack.watch will email you.

IBM Jazz Reporting Service

Affected Versions

IBM Jazz Reporting Service:

Version 5.0 is affected.
Version 5.0.1 is affected.
Version 5.0.2 is affected.
Version 6.0 is affected.
Version 6.0.1 is affected.
Version 6.0.2 is affected.
Version 6.0.3 is affected.

Exploit Probability

EPSS

0.27%

Percentile

50.08%

EPSS (Exploit Prediction Scoring System) scores estimate the probability that a vulnerability will be exploited in the wild within the next 30 days. The percentile shows you how this score compares to all other vulnerabilities.

CVE-2017-1096 is a vulnerability in IBM Jazz Reporting ServicePublished on July 5, 2017

Products Associated with CVE-2017-1096

Affected Versions

Exploit Probability

CVE-2017-1096 is a vulnerability in IBM Jazz Reporting Service
Published on July 5, 2017