Lucene search
HistoryAug 21, 2013 - 9:55 p.m.
CVE-2013-0597
ibm
websphere
app server
xss
cve-2013-0597
vulnerability
oauth
nvd
6.7 Medium
AI Score
Confidence
High
3.5 Low
CVSS2
Access Vector
NETWORK
Access Complexity
MEDIUM
Authentication
SINGLE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:M/Au:S/C:N/I:P/A:N
0.001 Low
EPSS
Percentile
42.4%
Cross-site scripting (XSS) vulnerability in IBM WebSphere Application Server (WAS) 7.0 before 7.0.0.29, 8.0 before 8.0.0.7, and 8.5 before 8.5.5.0, when OAuth is used, allows remote authenticated users to inject arbitrary web script or HTML via unspecified vectors.
Related
ibm
ibm
openvas
openvas
IBM Websphere Application Cross Site Scripting Vulnerability -02 (Jan 2016)
2016-01-20 00:00:00
prion
prion
Cross site scripting
2013-08-21 21:55:00
cvelist
cvelist
CVE-2013-0597
2013-08-21 21:00:00
nessus
nessus
IBM WebSphere Application Server 7.0 < Fix Pack 29 Multiple Vulnerabilities
2013-07-19 00:00:00
IBM WebSphere Application Server 8.0 < Fix Pack 7 Multiple Vulnerabilities
2013-08-23 00:00:00
6.7 Medium
AI Score
Confidence
High
3.5 Low
CVSS2
Access Vector
NETWORK
Access Complexity
MEDIUM
Authentication
SINGLE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:M/Au:S/C:N/I:P/A:N
0.001 Low
EPSS
Percentile
42.4%
Related for CVE-2013-0597