CVE-2013-5118

2013-09-2510:31:00

CWE-79

[email protected]

web.nvd.nist.gov

cve-2013-5118

cross-site scripting

xss vulnerability

good for enterprise

ios

html e-mail

nvd

5.6 Medium

AI Score

Confidence

High

4.3 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:M/Au:N/C:N/I:P/A:N

0.002 Low

EPSS

Percentile

61.4%

JSON

Cross-site scripting (XSS) vulnerability in the Good for Enterprise app before 2.2.4.1659 for iOS allows remote attackers to inject arbitrary web script or HTML via an HTML e-mail message.

CPENameOperatorVersion
good:good_for_enterprisegood good for enterpriseeq2.1.5.1551
good:good_for_enterprisegood good for enterpriseeq1.9.8
good:good_for_enterprisegood good for enterpriseeq1.9.9
good:good_for_enterprisegood good for enterpriseeq2.1.3.1513
good:good_for_enterprisegood good for enterpriseeq2.2.1.1591
good:good_for_enterprisegood good for enterpriseeq2.1.4.1518
good:good_for_enterprisegood good for enterpriseeq2.0.2
good:good_for_enterprisegood good for enterpriseeq1.9.10
good:good_for_enterprisegood good for enterpriseeq2.0.0
good:good_for_enterprisegood good for enterpriseeq2.2.2

CPE	Name	Operator	Version
good:good_for_enterprise	good good for enterprise	eq	2.1.5.1551
good:good_for_enterprise	good good for enterprise	eq	1.9.8
good:good_for_enterprise	good good for enterprise	eq	1.9.9
good:good_for_enterprise	good good for enterprise	eq	2.1.3.1513
good:good_for_enterprise	good good for enterprise	eq	2.2.1.1591
good:good_for_enterprise	good good for enterprise	eq	2.1.4.1518
good:good_for_enterprise	good good for enterprise	eq	2.0.2
good:good_for_enterprise	good good for enterprise	eq	1.9.10
good:good_for_enterprise	good good for enterprise	eq	2.0.0
good:good_for_enterprise	good good for enterprise	eq	2.2.2