{"resultsPerPage":1,"startIndex":0,"totalResults":1,"format":"NVD_CVE","version":"2.0","timestamp":"2026-04-19T11:05:56.758","vulnerabilities":[{"cve":{"id":"CVE-2016-9990","sourceIdentifier":"psirt@us.ibm.com","published":"2017-03-31T18:59:00.390","lastModified":"2025-04-20T01:37:25.860","vulnStatus":"Deferred","cveTags":[],"descriptions":[{"lang":"en","value":"IBM iNotes 8.5 and 9.0 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a trusted session. IBM Reference #: 1998824."},{"lang":"es","value":"IBM iNotes 8.5 y 9.0 es vulnerable al envío de secuencias de comandos en sitios cruzados. Esta vulnerabilidad permite a los usuarios integrar código JavaScript arbitrario en la interfaz de usuario Web, alterando así la funcionalidad prevista que potencialmente conduce a la divulgación de credenciales dentro de una sesión de confianza. IBM Reference #: 1998824."}],"metrics":{"cvssMetricV30":[{"source":"nvd@nist.gov","type":"Primary","cvssData":{"version":"3.0","vectorString":"CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N","baseScore":6.1,"baseSeverity":"MEDIUM","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"REQUIRED","scope":"CHANGED","confidentialityImpact":"LOW","integrityImpact":"LOW","availabilityImpact":"NONE"},"exploitabilityScore":2.8,"impactScore":2.7}],"cvssMetricV2":[{"source":"nvd@nist.gov","type":"Primary","cvssData":{"version":"2.0","vectorString":"AV:N/AC:M/Au:N/C:N/I:P/A:N","baseScore":4.3,"accessVector":"NETWORK","accessComplexity":"MEDIUM","authentication":"NONE","confidentialityImpact":"NONE","integrityImpact":"PARTIAL","availabilityImpact":"NONE"},"baseSeverity":"MEDIUM","exploitabilityScore":8.6,"impactScore":2.9,"acInsufInfo":false,"obtainAllPrivilege":false,"obtainUserPrivilege":false,"obtainOtherPrivilege":false,"userInteractionRequired":true}]},"weaknesses":[{"source":"nvd@nist.gov","type":"Primary","description":[{"lang":"en","value":"CWE-79"}]}],"configurations":[{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:ibm:inotes:8.5.0.0:*:*:*:*:*:*:*","matchCriteriaId":"16FE6AAC-7B25-40EA-9D25-128D743F18A9"},{"vulnerable":true,"criteria":"cpe:2.3:a:ibm:inotes:8.5.0.1:*:*:*:*:*:*:*","matchCriteriaId":"1726DB55-DE85-4A10-8912-59FFF5D0A87A"},{"vulnerable":true,"criteria":"cpe:2.3:a:ibm:inotes:8.5.1.0:*:*:*:*:*:*:*","matchCriteriaId":"49FF4C09-76B3-4CCA-9EBA-530B4CB0314D"},{"vulnerable":true,"criteria":"cpe:2.3:a:ibm:inotes:8.5.1.1:*:*:*:*:*:*:*","matchCriteriaId":"CC0FE386-25E0-452F-A0E4-C54901C8870B"},{"vulnerable":true,"criteria":"cpe:2.3:a:ibm:inotes:8.5.1.2:*:*:*:*:*:*:*","matchCriteriaId":"92E3BD0F-DC7F-47C1-A86A-9B1627FBE941"},{"vulnerable":true,"criteria":"cpe:2.3:a:ibm:inotes:8.5.1.3:*:*:*:*:*:*:*","matchCriteriaId":"68862417-67DC-462A-8557-E1E371926FC5"},{"vulnerable":true,"criteria":"cpe:2.3:a:ibm:inotes:8.5.1.4:*:*:*:*:*:*:*","matchCriteriaId":"0E251CBF-CA6A-4675-B7FA-B68EC44ADA52"},{"vulnerable":true,"criteria":"cpe:2.3:a:ibm:inotes:8.5.1.5:*:*:*:*:*:*:*","matchCriteriaId":"EC844FD9-65ED-4223-8B60-29EDC5EBEB3E"},{"vulnerable":true,"criteria":"cpe:2.3:a:ibm:inotes:8.5.2.0:*:*:*:*:*:*:*","matchCriteriaId":"B097CA3C-2ABA-489E-86C1-EEF891AF7094"},{"vulnerable":true,"criteria":"cpe:2.3:a:ibm:inotes:8.5.2.1:*:*:*:*:*:*:*","matchCriteriaId":"14F15C5B-D465-4AE6-B70B-E03EE32A0D54"},{"vulnerable":true,"criteria":"cpe:2.3:a:ibm:inotes:8.5.2.2:*:*:*:*:*:*:*","matchCriteriaId":"B8270B1C-31E1-47F6-B641-8A4291EBEF33"},{"vulnerable":true,"criteria":"cpe:2.3:a:ibm:inotes:8.5.2.3:*:*:*:*:*:*:*","matchCriteriaId":"1B62FD4B-A8B0-4215-A22C-241EE84A4C85"},{"vulnerable":true,"criteria":"cpe:2.3:a:ibm:inotes:8.5.3.0:*:*:*:*:*:*:*","matchCriteriaId":"A34CFCD5-D0F8-46E4-BA5F-24AA9CD378A6"},{"vulnerable":true,"criteria":"cpe:2.3:a:ibm:inotes:8.5.3.1:*:*:*:*:*:*:*","matchCriteriaId":"7EFF2543-619A-49EA-909C-49C82397A89E"},{"vulnerable":true,"criteria":"cpe:2.3:a:ibm:inotes:8.5.3.2:*:*:*:*:*:*:*","matchCriteriaId":"3A913396-D7C3-4088-A4E8-93BF3ADB9C21"},{"vulnerable":true,"criteria":"cpe:2.3:a:ibm:inotes:8.5.3.3:*:*:*:*:*:*:*","matchCriteriaId":"A2FAF950-ECA1-4DC1-ABC7-18C073209ED3"},{"vulnerable":true,"criteria":"cpe:2.3:a:ibm:inotes:8.5.3.4:*:*:*:*:*:*:*","matchCriteriaId":"40437DB7-17EB-4C53-9D71-624D01068D77"},{"vulnerable":true,"criteria":"cpe:2.3:a:ibm:inotes:8.5.3.5:*:*:*:*:*:*:*","matchCriteriaId":"677DDC3B-3B08-407F-8543-7A78B38B4F0A"},{"vulnerable":true,"criteria":"cpe:2.3:a:ibm:inotes:8.5.3.6:*:*:*:*:*:*:*","matchCriteriaId":"F0E9875B-4AEF-4D61-BEAE-BA5DA1F66C96"},{"vulnerable":true,"criteria":"cpe:2.3:a:ibm:inotes:9.0.0.0:*:*:*:*:*:*:*","matchCriteriaId":"975E8316-D4C3-40B7-8E57-E871D0327271"},{"vulnerable":true,"criteria":"cpe:2.3:a:ibm:inotes:9.0.1.0:*:*:*:*:*:*:*","matchCriteriaId":"4E0C5AFE-62C7-4A6C-991B-222FF28DF92B"},{"vulnerable":true,"criteria":"cpe:2.3:a:ibm:inotes:9.0.1.1:*:*:*:*:*:*:*","matchCriteriaId":"DF4C11BF-8A63-4ED9-871D-C3366D766CC1"},{"vulnerable":true,"criteria":"cpe:2.3:a:ibm:inotes:9.0.1.2:*:*:*:*:*:*:*","matchCriteriaId":"1B74523E-57BE-4B0B-B639-32927336C862"},{"vulnerable":true,"criteria":"cpe:2.3:a:ibm:inotes:9.0.1.3:*:*:*:*:*:*:*","matchCriteriaId":"521E7EBE-CEA6-4FF8-954A-2A43617FB1C4"},{"vulnerable":true,"criteria":"cpe:2.3:a:ibm:inotes:9.0.1.4:*:*:*:*:*:*:*","matchCriteriaId":"30460A5C-2D97-42B5-A190-5E0862E87EDA"},{"vulnerable":true,"criteria":"cpe:2.3:a:ibm:inotes:9.0.1.5:*:*:*:*:*:*:*","matchCriteriaId":"31391143-EE89-4521-81F4-43455AAF7D50"},{"vulnerable":true,"criteria":"cpe:2.3:a:ibm:inotes:9.0.1.6:*:*:*:*:*:*:*","matchCriteriaId":"5344290B-F139-4367-B976-C2E8007487F6"}]}]}],"references":[{"url":"http://www.ibm.com/support/docview.wss?uid=swg21998824","source":"psirt@us.ibm.com","tags":["Patch","Vendor Advisory"]},{"url":"http://www.securityfocus.com/bid/97151","source":"psirt@us.ibm.com","tags":["Third Party Advisory","VDB Entry"]},{"url":"http://www.securitytracker.com/id/1038145","source":"psirt@us.ibm.com"},{"url":"http://www.ibm.com/support/docview.wss?uid=swg21998824","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Patch","Vendor Advisory"]},{"url":"http://www.securityfocus.com/bid/97151","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory","VDB Entry"]},{"url":"http://www.securitytracker.com/id/1038145","source":"af854a3a-2127-422b-91ae-364da2661108"}]}}]}