CVE-2018-1900 is a vulnerability in IBM Curam Social Program Management
Published on December 11, 2018

IBM Curam Social Program Management 6.0.5, 6.1.1, 6.2.0, 7.0.1, and 7.0.3 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a trusted session. IBM X-Force ID: 152529.

NVD

Products Associated with CVE-2018-1900

Want to know whenever a new CVE is published for IBM Curam Social Program Management? stack.watch will email you.

IBM Curam Social Program Management

Affected Versions

IBM Curam Social Program Management:

Version 6.0.5 is affected.
Version 6.1.1 is affected.
Version 6.2.0 is affected.
Version 7.0.1 is affected.
Version 7.0.4 is affected.

Exploit Probability

EPSS

0.22%

Percentile

43.89%

EPSS (Exploit Prediction Scoring System) scores estimate the probability that a vulnerability will be exploited in the wild within the next 30 days. The percentile shows you how this score compares to all other vulnerabilities.

CVE-2018-1900 is a vulnerability in IBM Curam Social Program ManagementPublished on December 11, 2018

Products Associated with CVE-2018-1900

Affected Versions

Exploit Probability

CVE-2018-1900 is a vulnerability in IBM Curam Social Program Management
Published on December 11, 2018