Unrated severityNVD Advisory· Published Jul 20, 2015· Updated Jun 17, 2026
CVE-2015-1979
CVE-2015-1979
Description
Multiple cross-site scripting (XSS) vulnerabilities in the Error dialog in IBM Case Manager 5.2.1 before 5.2.1.2 allow remote authenticated users to inject arbitrary web script or HTML via crafted input to the (1) addressability or (2) comments component.
Affected products
3cpe:2.3:a:ibm:case_manager:5.2.1:*:*:*:*:*:*:*+ 2 more
- cpe:2.3:a:ibm:case_manager:5.2.1:*:*:*:*:*:*:*
- cpe:2.3:a:ibm:case_manager:5.2.1.1:*:*:*:*:*:*:*
- (no CPE)range: <5.2.1.2
Patches
Vulnerability mechanics
References
2- www-01.ibm.com/support/docview.wssnvdPatchVendor Advisory
- www.securityfocus.com/bid/75538nvd
News mentions
0No linked articles in our index yet.