What is the severity of CVE-2013-0477?

The CVE-2013-0477 vulnerability has been classified as moderate severity due to the potential for remote authenticated users to execute cross-site scripting attacks.

How do I fix CVE-2013-0477?

To fix CVE-2013-0477, apply the latest updates or patches provided by IBM for the affected versions of InfoSphere Master Data Management.

Which versions are affected by CVE-2013-0477?

CVE-2013-0477 affects IBM InfoSphere Master Data Management - Collaborative Edition versions 10.0 and 10.1 before FP1, as well as versions 6.0, 9.0, and 9.1 of InfoSphere Master Data Management Server for Product Information Management.

What are the potential impacts of CVE-2013-0477?

The potential impacts of CVE-2013-0477 include unauthorized content injection and potentially malicious execution of scripts in the context of affected applications.

Who is vulnerable to CVE-2013-0477?

Remote authenticated users of the affected IBM InfoSphere Master Data Management products are vulnerable to CVE-2013-0477.

Vulnerability/
CVE-2013-0477

medium

CWE

21/2/2013

6/8/2024

CVE-2013-0477: XSS

First published: Thu Feb 21 2013(Updated: )

Multiple cross-site scripting (XSS) vulnerabilities in IBM InfoSphere Master Data Management - Collaborative Edition 10.0 and 10.1 before FP1 and InfoSphere Master Data Management Server for Product Information Management 6.0, 9.0, and 9.1 allow remote authenticated users to inject content, and conduct phishing attacks, via unspecified vectors.

Credit: psirt@us.ibm.com

Affected Software	Affected Version	How to fix
Ibm Infosphere Master Data Management Collaboration Server	=10.0.0
Ibm Infosphere Master Data Management Collaboration Server	=10.0.1
IBM InfoSphere Master Data Management Server for Product Information Management	=6.0.0
IBM InfoSphere Master Data Management Server for Product Information Management	=9.0.0
IBM InfoSphere Master Data Management Server for Product Information Management	=9.1.0

Never miss a vulnerability like this again

Reference Links

Frequently Asked Questions

What is the severity of CVE-2013-0477?
The CVE-2013-0477 vulnerability has been classified as moderate severity due to the potential for remote authenticated users to execute cross-site scripting attacks.
How do I fix CVE-2013-0477?
To fix CVE-2013-0477, apply the latest updates or patches provided by IBM for the affected versions of InfoSphere Master Data Management.
Which versions are affected by CVE-2013-0477?
CVE-2013-0477 affects IBM InfoSphere Master Data Management - Collaborative Edition versions 10.0 and 10.1 before FP1, as well as versions 6.0, 9.0, and 9.1 of InfoSphere Master Data Management Server for Product Information Management.
What are the potential impacts of CVE-2013-0477?
The potential impacts of CVE-2013-0477 include unauthorized content injection and potentially malicious execution of scripts in the context of affected applications.
Who is vulnerable to CVE-2013-0477?
Remote authenticated users of the affected IBM InfoSphere Master Data Management products are vulnerable to CVE-2013-0477.

collector/nvd-index
agent/references
agent/type
agent/softwarecombine
collector/mitre-cve
source/MITRE
agent/severity
agent/author
agent/weakness
agent/last-modified-date
agent/tags
agent/first-publish-date
agent/event
agent/description
agent/source
vendor/ibm
canonical/ibm infosphere master data management collaboration server
version/ibm infosphere master data management collaboration server/10.0.0
version/ibm infosphere master data management collaboration server/10.0.1
canonical/ibm infosphere master data management server for product information management
version/ibm infosphere master data management server for product information management/6.0.0
version/ibm infosphere master data management server for product information management/9.0.0
version/ibm infosphere master data management server for product information management/9.1.0