CVE-2013-0477

Multiple cross-site scripting (XSS) vulnerabilities in IBM InfoSphere Master Data Management - Collaborative Edition 10.0 and 10.1 before FP1 and InfoSphere Master Data Management Server for Product Information Management 6.0, 9.0, and 9.1 allow remote authenticated users to inject content, and conduct phishing attacks, via unspecified vectors.
Cross-site Scripting
Severity
UNKNOWN
AV:N/AC:M/Au:S/C:P/I:P/A:P
Atk. Vector
NETWORK
Atk. Complexity
MEDIUM
Base Score
CVSS 3.x
EPSS Score
Percentile: 52%
VendorProductVersion
ibminfosphere_master_data_management_collaboration_server
10.0.0
ibminfosphere_master_data_management_collaboration_server
10.0.1
ibminfosphere_master_data_management_server_for_product_information_management
6.0.0
ibminfosphere_master_data_management_server_for_product_information_management
9.0.0
ibminfosphere_master_data_management_server_for_product_information_management
9.1.0
𝑥
= Vulnerable software versions