Rewterz Threat Advisory – CVE-2022-2905 – Linux Kernel Vulnerability
August 29, 2022Rewterz Threat Advisory – ICS: Delta Electronics DOPSoft Vulnerability Exploit in the Wild
August 30, 2022Rewterz Threat Advisory – CVE-2022-2905 – Linux Kernel Vulnerability
August 29, 2022Rewterz Threat Advisory – ICS: Delta Electronics DOPSoft Vulnerability Exploit in the Wild
August 30, 2022Severity
Medium
Analysis Summary
CVE-2021-38934
IBM Engineering Test Management 7.0, 7.0.1, and 7.0.2 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a trusted session.
Impact
- Cross-Site Scripting
Indicators Of Compromise
CVE
- CVE-2021-38934
Affected Vendors
IBM
Affected Products
IBM Engineering Test Management 7.0.1
IBM Engineering Test Management 7.0.2
IBM Engineering Test Management 7.0
Remediation
Refer to IBM Security Advisory for patch, upgrade or suggested workaround information.