CVE-2013-0936
Severity Score
4.3
*CVSS v2
Exploit Likelihood
*EPSS
Affected Versions
*CPE
Public Exploits
0
*Multiple Sources
Exploited in Wild
-
*KEV
Decision
-
*SSVC
Descriptions
Cross-site scripting (XSS) vulnerability in EMC Smarts IP Manager, Smarts Service Assurance Manager, Smarts Server Manager, Smarts VoIP Availability Manager, Smarts Network Protocol Manager, and Smarts MPLS Manager before 9.2 allows remote attackers to inject arbitrary web script or HTML via a crafted URL.
Una vulnerabilidad de ejecución de comandos en sitios cruzados (XSS) en EMC Smarts IP Manager, Smarts Service Assurance Manager, Smarts Server Manager ,Smarts VoIP Availability Manager, Smarts Network Protocol Manager, y Smarts MPLS Manager antes de v9.2 permite a atacantes remotos inyectar secuencias de comandos web o HTML a través una URL diseñada
*Credits:
N/A
CVSS Scores
Attack Vector
Attack Complexity
Authentication
Confidentiality
Integrity
Availability
* Common Vulnerability Scoring System
SSVC
- Decision:-
Exploitation
Automatable
Tech. Impact
* Organization's Worst-case Scenario
Timeline
- 2013-01-09 CVE Reserved
- 2013-03-28 CVE Published
- 2024-09-16 CVE Updated
- 2024-09-17 EPSS Updated
- ---------- Exploited in Wild
- ---------- KEV Due Date
- ---------- First Exploit
CWE
- CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')
CAPEC
References (1)
| URL | Tag | Source |
|---|---|---|
| http://archives.neohapsis.com/archives/bugtraq/2013-03/0152.html | Mailing List |
| URL | Date | SRC |
|---|
| URL | Date | SRC |
|---|
| URL | Date | SRC |
|---|
Affected Vendors, Products, and Versions
| Vendor | Product | Version | Other | Status | ||||||
|---|---|---|---|---|---|---|---|---|---|---|
| Vendor | Product | Version | Other | Status | <-- --> | Vendor | Product | Version | Other | Status |
| Emc Search vendor "Emc" | Smarts Ip Manager Search vendor "Emc" for product "Smarts Ip Manager" | 9.1 Search vendor "Emc" for product "Smarts Ip Manager" and version "9.1" | - |
Affected
| ||||||
| Emc Search vendor "Emc" | Smarts Mpls Manager Search vendor "Emc" for product "Smarts Mpls Manager" | 9.1 Search vendor "Emc" for product "Smarts Mpls Manager" and version "9.1" | - |
Affected
| ||||||
| Emc Search vendor "Emc" | Smarts Network Protocol Manager Search vendor "Emc" for product "Smarts Network Protocol Manager" | 9.1 Search vendor "Emc" for product "Smarts Network Protocol Manager" and version "9.1" | - |
Affected
| ||||||
| Emc Search vendor "Emc" | Smarts Server Manager Search vendor "Emc" for product "Smarts Server Manager" | 9.1 Search vendor "Emc" for product "Smarts Server Manager" and version "9.1" | - |
Affected
| ||||||
| Emc Search vendor "Emc" | Smarts Services Assurance Manager Search vendor "Emc" for product "Smarts Services Assurance Manager" | 9.1 Search vendor "Emc" for product "Smarts Services Assurance Manager" and version "9.1" | - |
Affected
| ||||||
| Emc Search vendor "Emc" | Smarts Voip Availability Manager Search vendor "Emc" for product "Smarts Voip Availability Manager" | 9.1 Search vendor "Emc" for product "Smarts Voip Availability Manager" and version "9.1" | - |
Affected
| ||||||