Lucene search

[email protected]CVE-2013-3025

HistoryOct 17, 2013 - 12:55 a.m.

CVE-2013-3025

2013-10-1700:55:03

CWE-79

[email protected]

web.nvd.nist.gov

ibm

rational focal point

6.5.x

6.6.x

xss

vulnerabilities

nvd

4.3 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:M/Au:N/C:N/I:P/A:N

5.7 Medium

AI Score

Confidence

High

0.001 Low

EPSS

Percentile

47.3%

JSON

Multiple cross-site scripting (XSS) vulnerabilities in IBM Rational Focal Point 6.5.x and 6.6.x before 6.6.0.1 allow remote attackers to inject arbitrary web script or HTML via unspecified vectors.

Affected configurations

NVD

Node

ibmrational_focal_pointMatch6.5.2

ibmrational_focal_pointMatch6.5.2.1

ibmrational_focal_pointMatch6.5.2.2

ibmrational_focal_pointMatch6.5.2.3

ibmrational_focal_pointMatch6.6

CPENameOperatorVersion
ibm:rational_focal_pointibm rational focal pointeq6.5.2
ibm:rational_focal_pointibm rational focal pointeq6.5.2.1
ibm:rational_focal_pointibm rational focal pointeq6.5.2.2
ibm:rational_focal_pointibm rational focal pointeq6.5.2.3
ibm:rational_focal_pointibm rational focal pointeq6.6

CPE	Name	Operator	Version
ibm:rational_focal_point	ibm rational focal point	eq	6.5.2
ibm:rational_focal_point	ibm rational focal point	eq	6.5.2.1
ibm:rational_focal_point	ibm rational focal point	eq	6.5.2.2
ibm:rational_focal_point	ibm rational focal point	eq	6.5.2.3
ibm:rational_focal_point	ibm rational focal point	eq	6.6

References

www-01.ibm.com/support/docview.wss?uid=swg21652479

exchange.xforce.ibmcloud.com/vulnerabilities/84363

4.3 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:M/Au:N/C:N/I:P/A:N

5.7 Medium

AI Score

Confidence

High

0.001 Low

EPSS

Percentile

47.3%

JSON

Related for CVE-2013-3025

prion1 nvd1 cvelist1