CNNVD-202509-3101 Information

CNNVD ID

CNNVD-202509-3101

Related CVE

CVE-2025-36248

• CNNVD Published: 2025-09-19

Description (Chinese)

IBM Copy Services Manager是美国国际商业机器（IBM）公司的一个具有管理和监控存储系统中的数据复制功能的软件。 IBM Copy Services Manager 6.3.13版本存在跨站脚本漏洞，该漏洞源于Web UI中允许嵌入任意JavaScript代码，可能导致凭据泄露。

Description (English)

IBM Copy Services Manager is a software of the United States International Business Machine (IBM) with data reproduction functionality in the management and monitoring of storage systems. Version 6.3.13 of IBM Copy Services Manager has a cross-site script loophole, which stems from the fact that web UI allows the embedding of any JavaScript code, which could lead to a leak of evidence.

Hazard Level

High

Vulnerability Type

跨站脚本

Affected Vendor

ICEcoder

Published

2025-09-19

Last Modified

2026-02-24

References

https://www.ibm.com/support/pages/node/7245562 https://access.redhat.com/security/cve/cve-2025-36248

Patch

https://www.ibm.com/support/pages/node/7245562