Lucene search
IbmCVE-2014-3102HistoryAug 12, 2014 - 5:01 a.m.
CVE-2014-3102
2014-08-1205:01:03
CWE-79
ibm
web.nvd.nist.gov
26
ibm
websphere portal
xss
vulnerability
remote authenticated users
nvd
CVSS2
3.5
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
SINGLE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:M/Au:S/C:N/I:P/A:N
AI Score
5.2
Confidence
High
EPSS
0.001
Percentile
38.0%
Cross-site scripting (XSS) vulnerability in IBM WebSphere Portal 7.0.0 through 7.0.0.2 CF28 and 8.0.0 before 8.0.0.1 CF13 allows remote authenticated users to inject arbitrary web script or HTML via a crafted URL.
Affected configurations
Node
ibmwebsphere_portalMatch7.0.0.0
ORibmwebsphere_portalMatch7.0.0.1
ORibmwebsphere_portalMatch7.0.0.2
ORibmwebsphere_portalMatch8.0.0.0
| Vendor | Product | Version | CPE |
|---|---|---|---|
| ibm | websphere_portal | 7.0.0.0 | cpe:2.3:a:ibm:websphere_portal:7.0.0.0:*:*:*:*:*:*:* |
| ibm | websphere_portal | 7.0.0.1 | cpe:2.3:a:ibm:websphere_portal:7.0.0.1:*:*:*:*:*:*:* |
| ibm | websphere_portal | 7.0.0.2 | cpe:2.3:a:ibm:websphere_portal:7.0.0.2:*:*:*:*:*:*:* |
| ibm | websphere_portal | 8.0.0.0 | cpe:2.3:a:ibm:websphere_portal:8.0.0.0:*:*:*:*:*:*:* |
Related
prion
prion
Cross site scripting
2014-08-12 05:01:00
nessus
nessus
IBM WebSphere Portal Unspecified XSS (PI16174)
2014-09-05 00:00:00
IBM WebSphere Portal 8.x < 8.0.0.1 CF13 Multiple Vulnerabilities
2014-09-05 00:00:00
IBM WebSphere Portal 7.0.0.x < 7.0.0.2 CF29 Multiple Vulnerabilities
2014-12-03 00:00:00
nvd
nvd
CVE-2014-3102
2014-08-12 05:01:03
cvelist
cvelist
CVE-2014-3102
2014-08-12 01:00:00
CVSS2
3.5
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
SINGLE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:M/Au:S/C:N/I:P/A:N
AI Score
5.2
Confidence
High
EPSS
0.001
Percentile
38.0%
Related for CVE-2014-3102