ID CVE-2013-2999Type cveReporter cve@mitre.orgModified 2018-08-29T17:41:00
Description
Cross-site scripting (XSS) vulnerability in IBM InfoSphere Data Replication Dashboard 9.7 and 10.1 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors. IBM X-Force ID: 84115.
{"id": "CVE-2013-2999", "bulletinFamily": "NVD", "title": "CVE-2013-2999", "description": "Cross-site scripting (XSS) vulnerability in IBM InfoSphere Data Replication Dashboard 9.7 and 10.1 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors. IBM X-Force ID: 84115.", "published": "2018-07-09T18:29:00", "modified": "2018-08-29T17:41:00", "cvss": {"score": 4.3, "vector": "AV:N/AC:M/Au:N/C:N/I:P/A:N"}, "href": "https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2013-2999", "reporter": "cve@mitre.org", "references": ["https://exchange.xforce.ibmcloud.com/vulnerabilities/84115", "https://www.ibm.com/blogs/psirt/security-bulletin-multiple-vulnerabilities-affect-infosphere-data-replication-dashboard-cve-2013-2999-cve-2013-3001-cve-2013-3000/"], "cvelist": ["CVE-2013-2999"], "type": "cve", "lastseen": "2019-05-29T18:13:03", "history": [], "edition": 1, "hashmap": [{"key": "affectedSoftware", "hash": "fd9aa37cd5ae4d263598aa8c5f75f8b7"}, {"key": "bulletinFamily", "hash": "601892ece72be3be2f57266ca2354792"}, {"key": "cpe", "hash": "05616ae07ee98a21d95f97a2af84b6bf"}, {"key": "cpe23", "hash": "a3493af68a29e4ab7ab57e100d9244b2"}, {"key": "cvelist", "hash": "0a1864fc226894af09d3a10c66c8403e"}, {"key": "cvss", "hash": "f74a1c24e49a5ecb0eefb5e51d4caa14"}, {"key": "cvss2", "hash": "25131d66a9f3961140b068f4b41aa42b"}, {"key": "cvss3", "hash": "f9048d548aea2a33f8c8fe44e8c9817c"}, {"key": "cwe", "hash": "34e69e045b64924bccf865d56b6918a2"}, {"key": "description", "hash": "990d372eb0a32576a6e36bf34b405004"}, {"key": "href", "hash": "eff64112aa3b427f256b03b447b81d9d"}, {"key": "modified", "hash": "257780fb13427e88cc34dc5868a23657"}, {"key": "published", "hash": "7cb2eb055ed9e7381707e61ed51b59eb"}, {"key": "references", "hash": "86fe9f8f244122109e93dd82216a28ca"}, {"key": "reporter", "hash": "444c2b4dda4a55437faa8bef1a141e84"}, {"key": "title", "hash": "843c148f3d25b0da005a7efddda2150e"}, {"key": "type", "hash": "1716b5fcbb7121af74efdc153d0166c5"}], "hash": "02b96573ba354a5633149b3cdb04133894409303df55da2881bc004168cec098", "viewCount": 0, "enchantments": {"score": {"value": 4.3, "vector": "NONE", "modified": "2019-05-29T18:13:03", "rev": 2}, "dependencies": {"references": [], "modified": "2019-05-29T18:13:03", "rev": 2}, "vulnersScore": 4.3}, "objectVersion": "1.3", "cpe": ["cpe:/a:ibm:infosphere_data_replication_dashboard:10.1", "cpe:/a:ibm:infosphere_data_replication_dashboard:9.7"], "affectedSoftware": [{"name": "ibm infosphere_data_replication_dashboard", "operator": "eq", "version": "10.1"}, {"name": "ibm infosphere_data_replication_dashboard", "operator": "eq", "version": "9.7"}], "cvss2": {"cvssV2": {"accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "NONE", "baseScore": 4.3, "confidentialityImpact": "NONE", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:N/I:P/A:N", "version": "2.0"}, "exploitabilityScore": 8.6, "impactScore": 2.9, "obtainAllPrivilege": false, "obtainOtherPrivilege": false, "obtainUserPrivilege": false, "severity": "MEDIUM", "userInteractionRequired": true}, "cvss3": {"cvssV3": {"attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "NONE", "baseScore": 6.1, "baseSeverity": "MEDIUM", "confidentialityImpact": "LOW", "integrityImpact": "LOW", "privilegesRequired": "NONE", "scope": "CHANGED", "userInteraction": "REQUIRED", "vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N", "version": "3.0"}, "exploitabilityScore": 2.8, "impactScore": 2.7}, "cpe23": ["cpe:2.3:a:ibm:infosphere_data_replication_dashboard:10.1:*:*:*:*:*:*:*", "cpe:2.3:a:ibm:infosphere_data_replication_dashboard:9.7:*:*:*:*:*:*:*"], "cwe": ["CWE-79"]}
{}
