CVE-2025-36056 – IBM System Storage Virtualization Engine TS7700 Cross-Site Scripting Vulnerability

June 30, 2025

CVE ID : CVE-2025-36056

Published : July 1, 2025, 1:15 a.m. | 24 minutes ago

Description : IBM System Storage Virtualization Engine TS7700 3957 VED R5.4 8.54.2.17, R6.0 8.60.0.115, 3948 VED R5.4 8.54.2.17, R6.0 8.60.0.115, and 3948 VEF R6.0 8.60.0.115 is vulnerable to cross-site scripting. This vulnerability allows an authenticated user to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a trusted session.

Severity: 5.4 | MEDIUM

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

Source: Read More

Previous ArticleCVE-2025-6937 – Code-projects Simple Pizza Ordering System SQL Injection Vulnerability

Next Article CVE-2025-53005 – DataEase PostgreSQL Data Source JDBC Connection Factory Argument Injection Vulnerability

June 2025: All AI updates from the past month

Building a culture that will drive platform engineering success

Gartner: More than 40% of agentic AI projects will be canceled in the next few years

Never Stop Exploring (July 2025 Wallpapers Edition)

I never thought I’d praise a kickstand power bank – until I tried this one

I replaced my work PC with this Alienware laptop – now I’m wondering why I hadn’t done this sooner

How to set up Alexa to receive notifications on Prime Day deals you want

How proxy servers actually work, and why they’re so valuable

Top 6 MySQL Database Management Struggles for Laravel Developers (And Smart Fixes)

Top 6 MySQL Database Management Struggles for Laravel Developers (And Smart Fixes)

What’s the difference between named functions and arrow functions in JavaScript?

Spring Boot + Swagger: A Complete Guide to API Documentation

Relive the Golden Era: 5 Tools to Get Retro Feel on Linux

Relive the Golden Era: 5 Tools to Get Retro Feel on Linux

mpvc – mpc-like CLI tool for mpv

sherpa-onnx is speech-to-text and text-to-speech software

CVE-2025-36056 – IBM System Storage Virtualization Engine TS7700 Cross-Site Scripting Vulnerability

CVE-2025-6554 – Google Chrome V8 Type Confusion Vulnerability

CVE-2025-6930 – PHPGurukul Zoo Management System SQL Injection Vulnerability

An Animated Introduction to SQL – Learn to Query Relational Databases

Unlocking BI Potential with DataGenie & MongoDB

CVE-2024-56523 – Radware Cloud Web Application Firewall (WAF) HTTP Request Smuggling

Moonsight AI Released Kimi-VL: A Compact and Powerful Vision-Language Model Series Redefining Multimodal Reasoning, Long-Context Understanding, and High-Resolution Visual Processing

CVE-2024-51978 – Cisco Device Default Administrator Password Disclosure Vulnerability

CVE-2025-3441 – CVE-2022-1234: Adobe Flash Type Confusion Vulnerability

Qsynth is a Qt GUI interface for FluidSynth

CVE-2022-21546 – Dell SBC Null Data Buffer Access Crash Vulnerability (Denial of Service)

CVE-2025-36056 – IBM System Storage Virtualization Engine TS7700 Cross-Site Scripting Vulnerability

Related Posts