NVD

Id
81837  
Name
CVE-2016-6096  
Description
IBM Tivoli Key Lifecycle Manager 2.0.1, 2.5, and 2.6 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a trusted session.  
Reject
 
CVSS Version
2  
CVSS Score
4.3  
Severity
Medium  
CVSS Base Score
4.3  
CVSS Impact Subscore
2.9  
CVSS Exploit Subscore
8.6  
CVSS Vector
(AV:N/AC:M/Au:N/C:N/I:P/A:N)  
Pub Date
2017-02-15  
Published
2017-02-07  
Modified Date
2017-02-09  
Seq
2016-6096  

Actions

Related NVD References

Id NVD Id NVD No. Reference Actions
405378 81837 CVE-2016-2318 openSUSE-SU-2016:1724  View
405379 81837 CVE-2016-2318 SUSE-SU-2016:1783  View
405380 81837 CVE-2016-2318 openSUSE-SU-2016:2073  View
405381 81837 CVE-2016-2318 DSA-3746  View
405382 81837 CVE-2016-2318 [oss-security] 20160211 Re: CVE requests: Multiple vulnerabilities in GraphicsMagick parsing and processing SVG files  View
405383 81837 CVE-2016-2318 [oss-security] 20160527 Security issues addressed in GraphicsMagick SVG reader  View
405384 81837 CVE-2016-2318 [oss-security] 20160531 Re: Security issues addressed in GraphicsMagick SVG reader  View
405385 81837 CVE-2016-2318 [oss-security] 20160906 GraphicsMagick 1.3.25 fixes some security issues  View
405386 81837 CVE-2016-2318 [oss-security] 20160918 Re: GraphicsMagick 1.3.25 fixes some security issues  View
405387 81837 CVE-2016-2318 83241  View
405388 81837 CVE-2016-2318 https://bugzilla.redhat.com/show_bug.cgi?id=1306148  View

Related JVN