CNNVD-202601-3207 Information

CNNVD ID

CNNVD-202601-3207

Related CVE

CVE-2025-36409

• CNNVD Published: 2026-01-20

Description (Chinese)

IBM ApplinX是美国国际商业机器（IBM）公司的一个专注于将绿屏界面转换为基于 Web 的现代应用程序。 IBM ApplinX 11.1版本存在跨站脚本漏洞，该漏洞源于经过身份验证的用户可在Web UI中嵌入任意JavaScript代码，可能导致凭据泄露。

Description (English)

IBM ApplinX is a modern Web-based application dedicated to the conversion of the green screen interface to the United States International Business Machine (IBM). Version 11.1 of IBM ApplinX has a cross-site script loophole, which stems from the fact that any JavaScript code can be embedded in Web UI by an identified user and may lead to a leak of evidence.

Hazard Level

High

Vulnerability Type

跨站脚本

Affected Vendor

国际商业机器

Published

2026-01-20

Last Modified

2026-02-24

References

https://www.ibm.com/support/pages/node/7257446 https://access.redhat.com/security/cve/cve-2025-36409

Patch

https://www.ibm.com/support/pages/node/7257446