{"resultsPerPage":1,"startIndex":0,"totalResults":1,"format":"NVD_CVE","version":"2.0","timestamp":"2026-04-21T09:06:57.515","vulnerabilities":[{"cve":{"id":"CVE-2016-5897","sourceIdentifier":"psirt@us.ibm.com","published":"2017-02-01T20:59:01.020","lastModified":"2025-04-20T01:37:25.860","vulnStatus":"Deferred","cveTags":[],"descriptions":[{"lang":"en","value":"IBM Jazz Reporting Service (JRS) is vulnerable to HTML injection. A remote attacker could inject malicious HTML code, which when viewed, would be executed in the victim's Web browser within the security context of the hosting site."},{"lang":"es","value":"IBM Jazz Reporting Service (JRS) es vulnerable a inyección HTML. Un atacante remoto podría inyectar código HTML malicioso, que al ser visto, sería ejecutado en el navegador Web de la víctima dentro del contexto de seguridad del sitio de alojamiento."}],"metrics":{"cvssMetricV30":[{"source":"nvd@nist.gov","type":"Primary","cvssData":{"version":"3.0","vectorString":"CVSS:3.0/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N","baseScore":5.4,"baseSeverity":"MEDIUM","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"LOW","userInteraction":"REQUIRED","scope":"CHANGED","confidentialityImpact":"LOW","integrityImpact":"LOW","availabilityImpact":"NONE"},"exploitabilityScore":2.3,"impactScore":2.7}],"cvssMetricV2":[{"source":"nvd@nist.gov","type":"Primary","cvssData":{"version":"2.0","vectorString":"AV:N/AC:M/Au:S/C:N/I:P/A:N","baseScore":3.5,"accessVector":"NETWORK","accessComplexity":"MEDIUM","authentication":"SINGLE","confidentialityImpact":"NONE","integrityImpact":"PARTIAL","availabilityImpact":"NONE"},"baseSeverity":"LOW","exploitabilityScore":6.8,"impactScore":2.9,"acInsufInfo":false,"obtainAllPrivilege":false,"obtainUserPrivilege":false,"obtainOtherPrivilege":false,"userInteractionRequired":true}]},"weaknesses":[{"source":"nvd@nist.gov","type":"Primary","description":[{"lang":"en","value":"CWE-79"}]}],"configurations":[{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:ibm:jazz_reporting_service:6.0:*:*:*:*:*:*:*","matchCriteriaId":"07DD3FB3-ABE3-4645-9AFB-429EA4EA818D"},{"vulnerable":true,"criteria":"cpe:2.3:a:ibm:jazz_reporting_service:6.0.1:*:*:*:*:*:*:*","matchCriteriaId":"FF3780DD-9FAC-4850-AA83-DCA7D013FB3E"},{"vulnerable":true,"criteria":"cpe:2.3:a:ibm:jazz_reporting_service:6.0.2:*:*:*:*:*:*:*","matchCriteriaId":"9FCC8D80-8974-41F7-8225-474A9814ABD3"}]}]}],"references":[{"url":"http://www.ibm.com/support/docview.wss?uid=swg21991153","source":"psirt@us.ibm.com","tags":["Patch","Vendor Advisory"]},{"url":"http://www.securityfocus.com/bid/94857","source":"psirt@us.ibm.com","tags":["Third Party Advisory","VDB Entry"]},{"url":"http://www.ibm.com/support/docview.wss?uid=swg21991153","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Patch","Vendor Advisory"]},{"url":"http://www.securityfocus.com/bid/94857","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory","VDB Entry"]}]}}]}