Medium severity4.8NVD Advisory· Published Dec 11, 2017· Updated May 13, 2026

CVE-2017-16789

Description

Cross-site scripting (XSS) vulnerability in Integration Matters nJAMS 3 before 3.2.0 Hotfix 7, as used in TIBCO BusinessWorks Process Monitor through 3.0.1.3 and other products, allows remote authenticated administrators to inject arbitrary web script or HTML via the users management panel of the web interface.

Affected products

Integrationmatters/Njams
cpe:2.3:a:integrationmatters:njams:3:*:*:*:*:*:*:*
TIBCO Software/Businessworks Process Monitor
cpe:2.3:a:tibco:businessworks_process_monitor:*:*:*:*:*:*:*:*
Range: <=3.0.1.3

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

pastebin.com/AxvP1v2ZnvdThird Party Advisory
www.integrationmatters.com/cms/upload/Resources/nJAMS_SecurityUpdate_CVE-2017-16789.pdfnvd
www.on-x.com/sites/default/files/on-x_-_security_advisory_-_njams3_-_cve-2017-16789.pdfnvd

News mentions

No linked articles in our index yet.

cvss	0.312
epss	0.000
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000