VYPR
Unrated severityNVD Advisory· Published Mar 19, 2019· Updated Sep 16, 2024

CVE-2018-1836

CVE-2018-1836

Description

IBM WebSphere MQ 9.0.2, 9.0.3, 9.0.4, 9.0.5, 9.1.0.0, and 9.1.0.1 console is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a trusted session. IBM X-Force ID: 150661.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

2
  • IBM/Websphere Mqllm-fuzzy
    Range: 9.0.2, 9.0.3, 9.0.4, 9.0.5, 9.1.0.0, 9.1.0.1
  • IBM/MQv5
    Range: 9.0.2

Patches

Vulnerability mechanics

References

3

News mentions

0

No linked articles in our index yet.