NVD

Id
81703  
Name
CVE-2016-0217  
Description
IBM Cognos Business Intelligence and IBM Cognos Analytics are vulnerable to stored cross-site scripting, caused by improper validation of user-supplied input. A remote attacker could exploit this vulnerability to inject malicious script into a Web page which would be executed in a victim"s Web browser within the security context of the hosting Web site, once the page is viewed. An attacker could use this vulnerability to steal the victim"s cookie-based authentication credentials.  
Reject
 
CVSS Version
 
CVSS Score
 
Severity
 
CVSS Base Score
 
CVSS Impact Subscore
 
CVSS Exploit Subscore
 
CVSS Vector
 
Pub Date
2017-02-08  
Published
2017-02-01  
Modified Date
2017-02-02  
Seq
2016-0217  

Actions

Related NVD References

Related JVN

Id Name Title Summary Cveinfo Name Cveinfo Id Nvdinfo Name Nvdinfo Id Cvssv2 Cvssv3 Jvnurl Published Date Last Updated Date Actions
65213 JVNDB-2017-001580 IBM Cognos Analytics における格納型クロスサイトスクリプティングの脆弱性 IBM Cognos Analytics は、ユーザによる入力を適切に検証しないため、格納型クロスサイトスクリプティングの脆弱性が存在します。 CVE-2016-0217 CVE-2016-0217 81703 3.5 5.4 http://jvndb.jvn.jp/ja/contents/2017/JVNDB-2017-001580.html 2017-01-13 2017-03-06 View