CVE-2020-4838 – IBM API Connect 5.0.0.0 through 5.0.8.10 is vulnerable to stored cross-site scripting. Thi …

Vuln ID: CVE-2020-4838

Published:  2021-01-12  15:15:14Z

Description: IBM API Connect 5.0.0.0 through 5.0.8.10 is vulnerable to stored cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a trusted session. IBM X-Force ID: 190036.

Source: NVD.NIST.GOV