Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
cveDellCVE-2013-3281
HistoryNov 06, 2013 - 3:55 p.m.

CVE-2013-3281

2013-11-0615:55:05
CWE-79
dell
web.nvd.nist.gov
38
cve
2013
3281
cross-site scripting
xss
emc
documentum
webtop
wdk
taskspace
records manager
web publisher
digital asset manager
administrator
capital projects

CVSS2

4.3

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:M/Au:N/C:N/I:P/A:N

AI Score

5.8

Confidence

High

EPSS

0.002

Percentile

52.2%

JSON

Cross-site scripting (XSS) vulnerability in EMC Documentum Webtop before 6.7 SP2 P07, Documentum WDK before 6.7 SP2 P07, Documentum Taskspace before 6.7 SP2 P07, Documentum Records Manager before 6.7 SP2 P07, Documentum Web Publisher before 6.5 SP7, Documentum Digital Asset Manager before 6.5 SP6, Documentum Administrator before 6.7 SP2 P07, and Documentum Capital Projects before 1.8 P01 allows remote attackers to inject arbitrary web script or HTML via a crafted parameter in a URL.

Affected configurations

Nvd
Node
emcdocumentum_taskspaceRange6.7sp2
OR
emcdocumentum_taskspaceMatch6.7
OR
emcdocumentum_taskspaceMatch6.7sp1
Node
emcdocumentum_capital_projectsRange1.8
Node
emcdocumentum_wdkRange6.7sp2
OR
emcdocumentum_wdkMatch6.7
OR
emcdocumentum_wdkMatch6.7sp1
Node
emcdocumentum_digital_asset_managerRange6.5sp5
OR
emcdocumentum_digital_asset_managerMatch6.5
OR
emcdocumentum_digital_asset_managerMatch6.5sp1
OR
emcdocumentum_digital_asset_managerMatch6.5sp2
OR
emcdocumentum_digital_asset_managerMatch6.5sp3
OR
emcdocumentum_digital_asset_managerMatch6.5sp4
Node
emcdocumentum_administratorRange6.7sp2
OR
emcdocumentum_administratorMatch6.7
OR
emcdocumentum_administratorMatch6.7sp1
Node
emcdocumentum_webtopRange6.7sp2
OR
emcdocumentum_webtopMatch6.7
OR
emcdocumentum_webtopMatch6.7sp1
Node
emcdocumentum_web_publisherRange6.5sp6
OR
emcdocumentum_web_publisherMatch6.5
OR
emcdocumentum_web_publisherMatch6.5sp1
OR
emcdocumentum_web_publisherMatch6.5sp2
OR
emcdocumentum_web_publisherMatch6.5sp3
OR
emcdocumentum_web_publisherMatch6.5sp4
OR
emcdocumentum_web_publisherMatch6.5sp5
VendorProductVersionCPE
emcdocumentum_taskspace*cpe:2.3:a:emc:documentum_taskspace:*:sp2:*:*:*:*:*:*
emcdocumentum_taskspace6.7cpe:2.3:a:emc:documentum_taskspace:6.7:*:*:*:*:*:*:*
emcdocumentum_taskspace6.7cpe:2.3:a:emc:documentum_taskspace:6.7:sp1:*:*:*:*:*:*
emcdocumentum_capital_projects*cpe:2.3:a:emc:documentum_capital_projects:*:*:*:*:*:*:*:*
emcdocumentum_wdk*cpe:2.3:a:emc:documentum_wdk:*:sp2:*:*:*:*:*:*
emcdocumentum_wdk6.7cpe:2.3:a:emc:documentum_wdk:6.7:*:*:*:*:*:*:*
emcdocumentum_wdk6.7cpe:2.3:a:emc:documentum_wdk:6.7:sp1:*:*:*:*:*:*
emcdocumentum_digital_asset_manager*cpe:2.3:a:emc:documentum_digital_asset_manager:*:sp5:*:*:*:*:*:*
emcdocumentum_digital_asset_manager6.5cpe:2.3:a:emc:documentum_digital_asset_manager:6.5:*:*:*:*:*:*:*
emcdocumentum_digital_asset_manager6.5cpe:2.3:a:emc:documentum_digital_asset_manager:6.5:sp1:*:*:*:*:*:*
Rows per page:
1-10 of 261

Related

cert 1
cvelist 1
nvd 1
prion 1
securityvulns 2
cert
cert
EMC Documentum Product Suite version 6.7 contains a DOM based cross-site scripting vulnerability
2013-11-14 00:00:00
cvelist
cvelist
CVE-2013-3281
2013-11-06 11:00:00
nvd
nvd
CVE-2013-3281
2013-11-06 15:55:05
prion
prion
Cross site scripting
2013-11-06 15:55:00
securityvulns
securityvulns
ESA-2013-070: EMC Documentum Cross Site Scripting Vulnerability.
2013-11-18 00:00:00
EMC Documentum crossite scripting
2013-11-18 00:00:00

CVSS2

4.3

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:M/Au:N/C:N/I:P/A:N

AI Score

5.8

Confidence

High

EPSS

0.002

Percentile

52.2%

JSON
Related for CVE-2013-3281
cert1cvelist1nvd1prion1securityvulns2