Skip to main content
CVE-2013-6735 MEDIUM POC PATCH This Month

IBM WebSphere Portal 6.0.0.x through 6.0.0.1, 6.0.1.x through 6.0.1.7, 6.1.0.x through 6.1.0.6 CF27, 6.1.5.x through 6.1.5.3 CF27, 7.0.0.x through 7.0.0.2 CF26, and 8.0.0.x through 8.0.0.1 CF08. Rated medium severity (CVSS 5.0), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available.

Privilege Escalation Java IBM Websphere Portal
NVD
CVSS 2.0
5.0
EPSS
1.3%
CVE-2013-6723 MEDIUM PATCH This Month

IBM WebSphere Portal 8.0.0.1 before CF09 does not properly handle references in compute="always" Web Content Manager (WCM) navigator components, which allows remote attackers to obtain sensitive. Rated medium severity (CVSS 5.0), this vulnerability is remotely exploitable, low attack complexity.

Privilege Escalation IBM Websphere Portal
NVD
CVSS 2.0
5.0
EPSS
0.4%
CVE-2013-4012 MEDIUM PATCH This Month

IBM WebSphere Portal 8.0.0.x before 8.0.0.1 CF09, when Content Template Catalog 4.0 is used, does not require administrative privileges for Portal Application Archive (PAA) file installation, which. Rated medium severity (CVSS 4.9), this vulnerability is remotely exploitable.

Privilege Escalation Denial Of Service IBM Websphere Portal
NVD
CVSS 2.0
4.9
EPSS
0.3%
CVE-2013-3705 MEDIUM This Month

The VBA32 AntiRootKit component for Novell Client 2 SP3 before IR5 on Windows allows local users to cause a denial of service (bugcheck and BSOD) via an IOCTL call for an invalid IOCTL. Rated medium severity (CVSS 4.9), this vulnerability is low attack complexity. No vendor patch available.

Denial Of Service Microsoft Client
NVD
CVSS 2.0
4.9
EPSS
0.0%
CVE-2013-6328 MEDIUM This Month

Cross-site scripting (XSS) vulnerability in the Web Content Manager (WCM) UI in IBM WebSphere Portal 6.1.0.x through 6.1.0.6 CF27, 6.1.5.x through 6.1.5.3 CF27, 7.0.0.x through 7.0.0.2 CF26, and. Rated medium severity (CVSS 4.3), this vulnerability is remotely exploitable. No vendor patch available.

IBM XSS Websphere Portal
NVD
CVSS 2.0
4.3
EPSS
0.3%
CVE-2013-6316 MEDIUM PATCH This Month

IBM WebSphere Portal 7.0.0.x before 7.0.0.2 CF26 and 8.0.0.x before 8.0.0.1 CF09 does not properly handle content-selection changes during Taxonomy component rendering, which allows remote attackers. Rated medium severity (CVSS 4.3), this vulnerability is remotely exploitable.

Privilege Escalation IBM Websphere Portal
NVD
CVSS 2.0
4.3
EPSS
0.3%
CVE-2013-5421 MEDIUM This Month

Cross-site scripting (XSS) vulnerability in the IMS server before Ifix 6 in IBM Security Access Manager for Enterprise Single Sign-On (ISAM ESSO) 8.2 allows remote attackers to inject arbitrary web. Rated medium severity (CVSS 4.3), this vulnerability is remotely exploitable. No vendor patch available.

IBM XSS Security Access Manager For Enterprise Single Sign On
NVD
CVSS 2.0
4.3
EPSS
0.2%
CVE-2013-6745 LOW Monitor

Cross-site scripting (XSS) vulnerability in the IMS server before Ifix 6 in IBM Security Access Manager for Enterprise Single Sign-On (ISAM ESSO) 8.2 allows remote authenticated users to inject. Rated low severity (CVSS 3.5), this vulnerability is remotely exploitable. No vendor patch available.

IBM XSS Security Access Manager For Enterprise Single Sign On
NVD
CVSS 2.0
3.5
EPSS
0.2%

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy