CNNVD-202507-3003 Information
CNNVD ID
CNNVD-202507-3003
Related CVE
- CNNVD Published: 2025-07-23
Description (Chinese)
IBM Operations Analytics-Log Analysis是美国国际商业机器(IBM)公司的一套半结构化数据分析解决方案。该产品主要用于应用程序日志分析和问题诊断等。 IBM Operations Analytics-Log Analysis 存在安全漏洞,该漏洞源于HTTP标头注入,可能导致跨站脚本或会话劫持。以下版本受到影响:1.3.7.0、1.3.7.1、1.3.7.2、1.3.8.0、1.3.8.1和1.3.8.2版本。
Description (English)
IBM Operations-Log Analysis is a semi-structured data analysis solution for IBM. The product is used mainly for application log analysis and problem diagnosis. IBM Operations Analytics-Log Analysis has a security loophole that originates from HTTP header injections, which may lead to hijackings across the station script or session. Versions 1.3.7.0, 1.3.7.1, 1.3.7.2, 1.3.8.0, 1.3.8.1 and 1.3.8.2 were affected.
Hazard Level
High
Vulnerability Type
其他
Affected Vendor
国际商业机器
Published
2025-07-23
Last Modified
2026-02-24
References
https://www.ibm.com/support/pages/node/7240270
Patch
https://www.ibm.com/support/pages/node/7240270
Share on: