CVE-2014-0889

Published: Jul 29, 2014Modified: May 6, 2026

4.3

Vector

AV:N/AC:M/Au:N/C:N/I:P/A:N

Exploitability: 8.6 / Impact: 2.9

Source: NVD

Description

Multiple cross-site scripting (XSS) vulnerabilities in IBM Atlas Suite (aka Atlas Policy Suite), as used in Atlas eDiscovery Process Management through 6.0.3, Disposal and Governance Management for IT through 6.0.3, and Global Retention Policy and Schedule Management through 6.0.3, allow remote attackers to inject arbitrary web script or HTML via unspecified parameters.

Affected (13)

Products: Ibm: Atlas Ediscovery Process Management, Atlas Suite, Disposal And Governance Management For It, Global Retention Policy And Schedule Management

Ibm

4 products

Atlas Ediscovery Process Management

Atlas Suite

Disposal And Governance Management For It

Global Retention Policy And Schedule Management

Configuration A

13 vulnerable

Vulnerable Software	Affected Versions
Ibm Atlas Ediscovery Process Management	Up to 6.0.3
Ibm Atlas Ediscovery Process Management	Version 6.0.1.5
Ibm Atlas Ediscovery Process Management	Version 6.0.1.6
Ibm Atlas Ediscovery Process Management	Version 6.0.2
Ibm Atlas Suite	All versions
Ibm Disposal And Governance Management For It	Up to 6.0.3
Ibm Disposal And Governance Management For It	Version 6.0.1.5
Ibm Disposal And Governance Management For It	Version 6.0.1.6
Ibm Disposal And Governance Management For It	Version 6.0.2
Ibm Global Retention Policy And Schedule Management	Up to 6.0.3
Ibm Global Retention Policy And Schedule Management	Version 6.0.1.5
Ibm Global Retention Policy And Schedule Management	Version 6.0.1.6
Ibm Global Retention Policy And Schedule Management	Version 6.0.2