CVE-2018-1363 is a vulnerability in IBM Jazz Reporting Service
Published on April 25, 2018

IBM Jazz Reporting Service (JRS) 5.0 through 5.0.2 and 6.0 through 6.0.5 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a trusted session. IBM X-Force ID: 137448.

NVD

Products Associated with CVE-2018-1363

Want to know whenever a new CVE is published for IBM Jazz Reporting Service? stack.watch will email you.

IBM Jazz Reporting Service

Affected Versions

IBM Jazz Reporting Service:

Version 5.0 is affected.
Version 5.0.1 is affected.
Version 5.0.2 is affected.
Version 6.0 is affected.
Version 6.0.1 is affected.
Version 6.0.2 is affected.
Version 6.0.3 is affected.
Version 6.0.4 is affected.
Version 6.0.5 is affected.

Exploit Probability

EPSS

0.24%

Percentile

46.54%

EPSS (Exploit Prediction Scoring System) scores estimate the probability that a vulnerability will be exploited in the wild within the next 30 days. The percentile shows you how this score compares to all other vulnerabilities.

CVE-2018-1363 is a vulnerability in IBM Jazz Reporting ServicePublished on April 25, 2018

Products Associated with CVE-2018-1363

Affected Versions

Exploit Probability

CVE-2018-1363 is a vulnerability in IBM Jazz Reporting Service
Published on April 25, 2018