← back
CVE-2021-29677

CVE-2021-29677

CVSS 5.4 MEDIUMEPSS 0.5%
IBM Security Verify (IBM Security Verify Privilege Vault 10.9.66) is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a trusted session.
CVSS:3.0/S:C/UI:R/PR:L/C:L/AC:L/I:L/A:N/AV:N/E:H/RL:O/RC:C
Affected products
IBM · Security Verify Privilege Vault

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →
References
https://exchange.xforce.ibmcloud.com/vulnerabilities/199578https://www.ibm.com/support/pages/node/6467045