We use these services and cookies to improve your user experience. You may opt out if you wish, however, this may limit some features on this site.

Please see our statement on Data Privacy.

Crisp.chat (Helpdesk and Chat)

Ok

THREATINT
PUBLISHED

CVE-2021-39014

IBM Cloud Object Storage System cross-site scripting



Assigneribm
Reserved2021-08-16
Published2023-07-07
Updated2024-10-24

Description

IBM Cloud Object System 3.15.8.97 is vulnerable to stored cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a trusted session. IBM X-Force ID: 213650.



MEDIUM: 6.4CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:L/I:L/A:N

Product status

Default status
unaffected

3.15.8.97
affected

References

https://www.ibm.com/support/pages/node/6517124 vendor-advisory

https://exchange.xforce.ibmcloud.com/vulnerabilities/213650 vdb-entry

cve.org CVE-2021-39014

nvd.nist.gov CVE-2021-39014

Download JSON

Share this page
https://cve.threatint.com
Subscribe to our newsletter to learn more about our work.