CVE-2017-1536 is a vulnerability in IBM Websphere Portal
Published on December 11, 2017

IBM Support Tools for Lotus WCM (IBM WebSphere Portal 7.0, 8.0, 8.5 and 9.0) is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a trusted session. IBM X-Force ID: 130733.

NVD

Products Associated with CVE-2017-1536

Want to know whenever a new CVE is published for IBM Websphere Portal? stack.watch will email you.

IBM Websphere Portal

Affected Versions

IBM WebSphere Portal:

Version 7.0 is affected.
Version 8.0 is affected.
Version 8.5 is affected.
Version 9.0 is affected.

Exploit Probability

EPSS

0.25%

Percentile

48.01%

EPSS (Exploit Prediction Scoring System) scores estimate the probability that a vulnerability will be exploited in the wild within the next 30 days. The percentile shows you how this score compares to all other vulnerabilities.

CVE-2017-1536 is a vulnerability in IBM Websphere PortalPublished on December 11, 2017

Products Associated with CVE-2017-1536

Affected Versions

Exploit Probability

CVE-2017-1536 is a vulnerability in IBM Websphere Portal
Published on December 11, 2017