CVE-2015-4959

CVE-2015-4959

EPSS 1.4%

Cross-site scripting (XSS) vulnerability in IBM Tivoli Federated Identity Manager (TFIM) 6.2.2 before FP16 allows remote attackers to inject arbitrary web script or HTML via a crafted URL.

Affected products

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →

References

http://www-01.ibm.com/support/docview.wss?uid=swg1IV77558 http://www-01.ibm.com/support/docview.wss?uid=swg21974157 http://www.securitytracker.com/id/1034697