CVE-2013-2955
Published May 27, 2013
Last updated 7 years ago
Overview
- Description
- Cross-site scripting (XSS) vulnerability in IBM InfoSphere Optim Data Growth for Oracle E-Business Suite 6.x, 7.x, and 9.x before 9.1.0.3 allows remote authenticated users to inject arbitrary web script or HTML via a crafted URL, related to a stored XSS issue.
- Source
- psirt@us.ibm.com
- NVD status
- Modified
Social media
- Hype score
- Not currently trending
Risk scores
CVSS 2.0
- Type
- Primary
- Base score
- 3.5
- Impact score
- 2.9
- Exploitability score
- 6.8
- Vector string
- AV:N/AC:M/Au:S/C:N/I:P/A:N
Weaknesses
- nvd@nist.gov
- CWE-79
Configurations
[ { "nodes": [ { "negate": false, "cpeMatch": [ { "criteria": "cpe:2.3:a:ibm:infosphere_optim_data_growth_for_oracle_e-business_suite:6.0:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "CCFEBBA0-8682-45F5-B14C-F2413C78CA9C" }, { "criteria": "cpe:2.3:a:ibm:infosphere_optim_data_growth_for_oracle_e-business_suite:6.1:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "042FA7EC-2756-4483-B1BC-C1CDA48E5E1B" }, { "criteria": "cpe:2.3:a:ibm:infosphere_optim_data_growth_for_oracle_e-business_suite:6.3.1:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "CD5D4C6B-FB5F-4471-8D52-8DD5D2A531D7" }, { "criteria": "cpe:2.3:a:ibm:infosphere_optim_data_growth_for_oracle_e-business_suite:6.3.2:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "C96FD2F5-C3A3-4397-A628-AEB9C4CF9413" }, { "criteria": "cpe:2.3:a:ibm:infosphere_optim_data_growth_for_oracle_e-business_suite:6.3.3:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "5084C06B-25B3-4889-A850-366AC4F64178" }, { "criteria": "cpe:2.3:a:ibm:infosphere_optim_data_growth_for_oracle_e-business_suite:6.4.0:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "00B5CE9C-2F45-4CB9-AF05-25AEDC7DB0F3" }, { "criteria": "cpe:2.3:a:ibm:infosphere_optim_data_growth_for_oracle_e-business_suite:6.4.1:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "F4F5D8D8-9BA0-454E-8298-C954CAC44556" }, { "criteria": "cpe:2.3:a:ibm:infosphere_optim_data_growth_for_oracle_e-business_suite:6.5.0:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "49A6675C-8467-4D81-A338-F3D943B9C4F5" }, { "criteria": "cpe:2.3:a:ibm:infosphere_optim_data_growth_for_oracle_e-business_suite:6.5.1:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "BBF3064D-039C-4161-8B72-39EC7E5F677B" }, { "criteria": "cpe:2.3:a:ibm:infosphere_optim_data_growth_for_oracle_e-business_suite:7.1.0:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "AA084A33-2CEE-4896-89C3-B30A219BAD91" }, { "criteria": "cpe:2.3:a:ibm:infosphere_optim_data_growth_for_oracle_e-business_suite:7.1.1:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "A45655F7-BBFD-41C6-A74D-5076FED0A213" }, { "criteria": "cpe:2.3:a:ibm:infosphere_optim_data_growth_for_oracle_e-business_suite:7.1.2:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "D7FE90E6-8DAC-46EC-A79A-B640866884AE" }, { "criteria": "cpe:2.3:a:ibm:infosphere_optim_data_growth_for_oracle_e-business_suite:7.2.0:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "157E4DB5-CEF7-446F-AACC-10B1B4EF7C97" }, { "criteria": "cpe:2.3:a:ibm:infosphere_optim_data_growth_for_oracle_e-business_suite:7.2.1:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "21992A6D-3178-49FE-8FDF-CC98CA09A551" }, { "criteria": "cpe:2.3:a:ibm:infosphere_optim_data_growth_for_oracle_e-business_suite:7.2.2:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "62EC9BD3-C64E-4B9F-8E72-2B39056F832A" }, { "criteria": "cpe:2.3:a:ibm:infosphere_optim_data_growth_for_oracle_e-business_suite:7.3.0:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "34E05B00-1740-42CD-A8D8-9F70749EF046" }, { "criteria": "cpe:2.3:a:ibm:infosphere_optim_data_growth_for_oracle_e-business_suite:7.3.1:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "AB46D109-DFC4-4265-9CEB-33337A4F7361" }, { "criteria": "cpe:2.3:a:ibm:infosphere_optim_data_growth_for_oracle_e-business_suite:9.1.0:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "7F6FC629-2802-4A9A-96D2-DDCA045B47BB" } ], "operator": "OR" } ] } ]