Unrated severityNVD Advisory· Published Feb 6, 2025· Updated Feb 22, 2025
IBM Jazz for Service Management Cross-Site Scripting
CVE-2024-52892
Description
IBM Jazz for Service Management 1.1.3 through 1.1.3.23 is vulnerable to cross-site scripting. This vulnerability allows an unauthenticated attacker to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a trusted session.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2>=1.1.3 <=1.1.3.23+ 1 more
- (no CPE)range: >=1.1.3 <=1.1.3.23
- (no CPE)range: 1.1.3
Patches
Vulnerability mechanics
References
1- www.ibm.com/support/pages/node/7182508mitrevendor-advisory
News mentions
0No linked articles in our index yet.