Lucene search
HistoryDec 21, 2013 - 2:22 p.m.
CVE-2013-4063
xss
cross-site scripting
inotes
ibm domino
vulnerability
security
cve-2013-4063
nvd
4.3 Medium
CVSS2
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:M/Au:N/C:N/I:P/A:N
5.6 Medium
AI Score
Confidence
High
0.001 Low
EPSS
Percentile
47.3%
Cross-site scripting (XSS) vulnerability in iNotes in IBM Domino 8.5.x before 8.5.3 FP6 and 9.0.x before 9.0.1 allows remote attackers to inject arbitrary web script or HTML via active content in an e-mail message, aka SPRs PTHN9AQMV7 and TCLE98ZKRP.
Affected configurations
Node
ibmlotus_dominoMatch8.5.3.0
ORibmlotus_dominoMatch8.5.3.1
ORibmlotus_dominoMatch8.5.3.2
ORibmlotus_dominoMatch8.5.3.3
ORibmlotus_dominoMatch8.5.3.4
ORibmlotus_dominoMatch8.5.3.5
ORibmlotus_dominoMatch9.0.0.0
ORibmlotus_inotesMatch8.5.3.0
ORibmlotus_inotesMatch8.5.3.1
ORibmlotus_inotesMatch8.5.3.2
ORibmlotus_inotesMatch8.5.3.3
ORibmlotus_inotesMatch8.5.3.4
ORibmlotus_inotesMatch8.5.3.5
ORibmlotus_inotesMatch9.0.0.0
Related
prion
prion
Cross site scripting
2013-12-21 14:22:00
cvelist
cvelist
CVE-2013-4063
2013-12-21 11:00:00
nvd
nvd
CVE-2013-4063
2013-12-21 14:22:56
nessus
nessus
IBM Domino 8.5.x < 8.5.3 FP6 iNotes Multiple XSS (credentialed check)
2014-01-08 00:00:00
IBM Domino 8.5.x < 8.5.3 FP6 iNotes Multiple XSS (uncredentialed check)
2014-01-08 00:00:00
IBM Domino 9.x < 9.0.1 Multiple Vulnerabilities (uncredentialed check)
2014-01-08 00:00:00
openvas
openvas
IBM Domino Email Message Cross-Site Scripting Vulnerabilities
2013-12-26 00:00:00
4.3 Medium
CVSS2
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:M/Au:N/C:N/I:P/A:N
5.6 Medium
AI Score
Confidence
High
0.001 Low
EPSS
Percentile
47.3%
Related for CVE-2013-4063