CVE-2014-6132

Cross-site scripting (XSS) vulnerability in the Web UI in IBM WebSphere Service Registry and Repository (WSRR) 6.3 through 6.3.0.5, 7.0.x through 7.0.0.5, 7.5.x through 7.5.0.4, 8.0.x before 8.0.0.3, and 8.5.x before 8.5.0.1 allows remote authenticated users to inject arbitrary web script or HTML via unspecified vectors.
Cross-site Scripting
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTNIST
3.5 UNKNOWN
NETWORK
MEDIUM
AV:N/AC:M/Au:S/C:N/I:P/A:N
ibmCNA
---
---
CVEADP
---
---
Base Score
CVSS 3.x
EPSS Score
Percentile: 53%
VendorProductVersion
ibmwebsphere_service_registry_and_repository
6.3.0
ibmwebsphere_service_registry_and_repository
6.3.0.1
ibmwebsphere_service_registry_and_repository
6.3.0.2
ibmwebsphere_service_registry_and_repository
6.3.0.3
ibmwebsphere_service_registry_and_repository
6.3.0.4
ibmwebsphere_service_registry_and_repository
6.3.0.5
ibmwebsphere_service_registry_and_repository
7.0.0
ibmwebsphere_service_registry_and_repository
7.0.0.1
ibmwebsphere_service_registry_and_repository
7.0.0.2
ibmwebsphere_service_registry_and_repository
7.0.0.3
ibmwebsphere_service_registry_and_repository
7.0.0.4
ibmwebsphere_service_registry_and_repository
7.0.0.5
ibmwebsphere_service_registry_and_repository
7.5.0.0
ibmwebsphere_service_registry_and_repository
7.5.0.1
ibmwebsphere_service_registry_and_repository
7.5.0.2
ibmwebsphere_service_registry_and_repository
7.5.0.3
ibmwebsphere_service_registry_and_repository
7.5.0.4
ibmwebsphere_service_registry_and_repository
8.0
ibmwebsphere_service_registry_and_repository
8.0.0.1
ibmwebsphere_service_registry_and_repository
8.0.0.2
ibmwebsphere_service_registry_and_repository
8.5
𝑥
= Vulnerable software versions
Common Weakness Enumeration
References
http://secunia.com/advisories/61805
http://www-01.ibm.com/support/docview.wss?uid=swg1IV64000
http://www.ibm.com/support/docview.wss?uid=swg21693379
http://www.ibm.com/support/docview.wss?uid=swg21693381
http://www.ibm.com/support/docview.wss?uid=swg21693384
http://www.ibm.com/support/docview.wss?uid=swg21693387
http://www.ibm.com/support/docview.wss?uid=swg21693389
https://exchange.xforce.ibmcloud.com/vulnerabilities/96812
http://secunia.com/advisories/61805
http://www-01.ibm.com/support/docview.wss?uid=swg1IV64000
http://www.ibm.com/support/docview.wss?uid=swg21693379
http://www.ibm.com/support/docview.wss?uid=swg21693381
http://www.ibm.com/support/docview.wss?uid=swg21693384
http://www.ibm.com/support/docview.wss?uid=swg21693387
http://www.ibm.com/support/docview.wss?uid=swg21693389
https://exchange.xforce.ibmcloud.com/vulnerabilities/96812