Vulnerability Description
Cross-site scripting (XSS) vulnerability in Welcome.do in the Data Management Portal Web User Interface in IBM Tivoli Application Dependency Discovery Manager (TADDM) 7.2.x before 7.2.1.4 allows remote authenticated users to inject arbitrary web script or HTML via a crafted URL.
CVSS Score
LOW
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Ibm | Tivoli Application Dependency Discovery Manager | 7.2.0.0 |
Related Weaknesses (CWE)
References
- http://www-01.ibm.com/support/docview.wss?uid=swg1IV32391
- http://www-01.ibm.com/support/docview.wss?uid=swg21625935PatchVendor Advisory
- https://exchange.xforce.ibmcloud.com/vulnerabilities/80494
- http://www-01.ibm.com/support/docview.wss?uid=swg1IV32391
- http://www-01.ibm.com/support/docview.wss?uid=swg21625935PatchVendor Advisory
- https://exchange.xforce.ibmcloud.com/vulnerabilities/80494
FAQ
What is CVE-2012-5939?
CVE-2012-5939 is a vulnerability with a CVSS score of 3.5 (LOW). Cross-site scripting (XSS) vulnerability in Welcome.do in the Data Management Portal Web User Interface in IBM Tivoli Application Dependency Discovery Manager (TADDM) 7.2.x before 7.2.1.4 allows remot...
How severe is CVE-2012-5939?
CVE-2012-5939 has been rated LOW with a CVSS base score of 3.5/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2012-5939?
Check the references section above for vendor advisories and patch information. Affected products include: Ibm Tivoli Application Dependency Discovery Manager.