VYPR
Medium severity5.4NVD Advisory· Published Dec 1, 2016· Updated Jun 17, 2026

CVE-2016-2991

CVE-2016-2991

Description

Multiple cross-site scripting (XSS) vulnerabilities in IBM Lotus Protector for Mail Security 2.8.0.0 through 2.8.1.0 before 2.8.1.0-22115 allow remote authenticated users to inject arbitrary web script or HTML via unspecified vectors.

Affected products

3
  • cpe:2.3:a:ibm:lotus_protector_for_mail_security:2.8:*:*:*:*:*:*:*+ 2 more
    • cpe:2.3:a:ibm:lotus_protector_for_mail_security:2.8:*:*:*:*:*:*:*
    • cpe:2.3:a:ibm:lotus_protector_for_mail_security:2.8.1:*:*:*:*:*:*:*
    • (no CPE)range: <2.8.1.0-22115

Patches

Vulnerability mechanics

References

2

News mentions

0

No linked articles in our index yet.