关键信息 漏洞概述 CVE编号: CVE-2017-1449 CVSS 3.0 Base Score: 5.4 Vulnerability ID: 128174 漏洞细节 Attack Vector: Network Attack Complexity: Low Privileges Required: Low User Interaction: Required Scope: Changed Confidentiality Impact: Low Integrity Impact: Low Availability Impact: None CVSS 3.0 Temporal Score: 5.2 Exploitability: Not Defined Remediation Level: Official Fix Report Confidence: Confirmed 后果 Consequences: Cross-Site Scripting 解决方案 Remedy: 参阅IBM Security Bulletin 2005834以获取补丁、升级或建议的变通方法信息 受影响的产品 IBM Emptoris Sourcing 9.5 IBM Emptoris Sourcing 10.0.0 IBM Emptoris Sourcing 10.0.1 IBM Emptoris Sourcing 10.0.2 参考文献 CVE-2017-1449 IBM Support IBM X-Force Exchange