November 20, 2023
Severity Medium Analysis Summary Agent Tesla is a very popular spyware Trojan built for the.NET framework. Since its initial appearance in 2014, this has been deployed […]
Rewterz Threat Advisory – CVE-2022-22365 – IBM WebSphere Application Server Vulnerability
May 24, 2022Rewterz Threat Advisory – CVE-2022-27588 – QNAP QVR Vulnerability
May 24, 2022Rewterz Threat Advisory – CVE-2022-22365 – IBM WebSphere Application Server Vulnerability
May 24, 2022Rewterz Threat Advisory – CVE-2022-27588 – QNAP QVR Vulnerability
May 24, 2022
Severity
Medium
Analysis Summary
CVE-2021-39043
IBM Jazz Team Server 6.0.6, 6.0.6.1, 7.0, 7.0.1, and 7.0.2 is vulnerable to stored cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a trusted session.
Impact
- Cross-SIte Scripting
Indicators Of Compromise
CVE
- CVE-2021-39043
Affected Vendors
- IBM
Affected Products
- IBM Jazz Team Server 6.0.6
- IBM Jazz Team Server 6.0.6.1
- IBM Jazz Team Server 7.0
- IBM Jazz Team Server 7.0.1
Remediation
Refer to IBM Security Advisory for patch, upgrade or suggested workaround information.