CVE-2013-4066

EUVD-2013-3997
IBM InfoSphere Information Server 8.0, 8.1, 8.5 through FP3, 8.7, and 9.1 allows remote attackers to conduct clickjacking attacks by creating an overlay interface on top of the Web Console interface.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTPrimary
4.3 UNKNOWN
NETWORK
MEDIUM
AV:N/AC:M/Au:N/C:N/I:P/A:N
Base Score
CVSS 3.x
EPSS Score
Percentile: 45%
Affected Products (NVD)
VendorProductVersion
ibminfosphere_information_server
8.0
ibminfosphere_information_server
8.1
ibminfosphere_information_server
8.5
ibminfosphere_information_server
8.5.0.1
ibminfosphere_information_server
8.5.0.2
ibminfosphere_information_server
8.5.0.3
ibminfosphere_information_server
8.7
ibminfosphere_information_server
9.1
𝑥
= Vulnerable software versions
Common Weakness Enumeration
References
http://www.ibm.com/support/docview.wss?uid=swg21651343
http://www.securityfocus.com/bid/62767
https://exchange.xforce.ibmcloud.com/vulnerabilities/86597
http://www.ibm.com/support/docview.wss?uid=swg21651343
http://www.securityfocus.com/bid/62767
https://exchange.xforce.ibmcloud.com/vulnerabilities/86597