CVE-2024-45094 – IBM DS8900F and DS8A00 HMC Stored Cross-Site Scripting Vulnerability

May 27, 2025

CVE ID : CVE-2024-45094

Published : May 27, 2025, 11:15 p.m. | 1 hour, 44 minutes ago

Description : IBM DS8900F and DS8A00 Hardware Management Console (HMC) is vulnerable to stored cross-site scripting. This vulnerability allows a privileged user to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a trusted session.

Severity: 5.5 | MEDIUM

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

Source: Read More

Previous ArticleCVE-2025-2796 – Arista EOS IPsec Anti-Replay Protection Vulnerability

Next Article CVE-2024-11185 – Arista EOS VLAN Isolation Bypass

The Case For Minimal WordPress Setups: A Contrarian View On Theme Frameworks

How To Fix Largest Contentful Paint Issues With Subpart Analysis

How To Prevent WordPress SQL Injection Attacks

Smashing Animations Part 4: Optimising SVGs

I test AI tools for a living. Here are 3 image generators I actually use and how

The world’s smallest 65W USB-C charger is my latest travel essential

This Spotlight alternative for Mac is my secret weapon for AI-powered search

Tech prophet Mary Meeker just dropped a massive report on AI trends – here’s your TL;DR

Beyond AEM: How Adobe Sensei Powers the Full Enterprise Experience

Beyond AEM: How Adobe Sensei Powers the Full Enterprise Experience

Simplify Negative Relation Queries with Laravel’s whereDoesntHaveRelation Methods

Cast Model Properties to a Uri Instance in 12.17

My Favorite Obsidian Plugins and Their Hidden Settings

My Favorite Obsidian Plugins and Their Hidden Settings

Rilasciata /e/OS 3.0: Nuova Vita per Android Senza Google, Più Privacy e Controllo per l’Utente

Rilasciata Oracle Linux 9.6: Scopri le Novità e i Miglioramenti nella Sicurezza e nelle Prestazioni

CVE-2024-45094 – IBM DS8900F and DS8A00 HMC Stored Cross-Site Scripting Vulnerability

HPE StoreOnce Faces Critical CVE-2025-37093 Vulnerability — Urges Immediate Patch Upgrade

Google fixes Chrome zero-day with in-the-wild exploit (CVE-2025-5419)

Google Halts Its Diversity and Inclusion Hiring Goals

Haylem, Un Museau Vaut Mille Mots, Lexibar Hit by Space Bears Ransomware: Patient Data, Financial Info Exposed?

NVIDIA NeMo Framework: High-Risk Vulnerabilities Allow Remote Code Execution

CVE-2025-44619 – Tinxy WiFi Lock Controller RF Authentication Bypass

Windows 11 will soon lose the Maps app forever, affecting dozens of users — RIP a Windows Phone relic

Spf Permerror Troubleshooting Guide For Better Email Deliverability Today

The AI Fix #36: A DeepSeek special

Fine-tune and host SDXL models cost-effectively with AWS Inferentia2

CVE-2024-45094 – IBM DS8900F and DS8A00 HMC Stored Cross-Site Scripting Vulnerability

Related Posts