CVE-2014-0901

Sažetak

Cross-site scripting (XSS) vulnerability in the Social Rendering implementation in the IBM Connections integration in IBM WebSphere Portal 8.0.0.x before 8.0.0.1 CF11 allows remote authenticated users to inject arbitrary web script or HTML via unspecified vectors.

Reference

http://www.securityfocus.com/bid/66559
http://www-01.ibm.com/support/docview.wss?uid=swg1PI12659
http://www-01.ibm.com/support/docview.wss?uid=swg21667016
https://exchange.xforce.ibmcloud.com/vulnerabilities/91398

CVSS

Base:	3.5
Impact:	2.9
Exploitability:	6.8

Pristup

Vektor	Složenost	Autentikacija
NETWORK	MEDIUM	SINGLE

Impact

Povjerljivost	Cjelovitost	Dostupnost
NONE	PARTIAL	NONE

CVSS vektor

AV:N/AC:M/Au:S/C:N/I:P/A:N

Zadnje važnije ažuriranje

29-08-2017 - 01:34

Objavljeno

02-04-2014 - 03:58