What is the severity of CVE-2013-0538?

CVE-2013-0538 has a moderate severity level as it involves a cross-site scripting vulnerability.

How do I fix CVE-2013-0538?

To fix CVE-2013-0538, upgrade IBM Lotus Notes to version 8.5.3 FP4 Interim Fix 1 or version 9.0 Interim Fix 1 or later.

What are the affected versions for CVE-2013-0538?

CVE-2013-0538 affects IBM Lotus Notes versions 8.0 to 8.5.3 before the specified fixes and version 9.0 before Interim Fix 1.

What is the impact of CVE-2013-0538?

The impact of CVE-2013-0538 allows attackers to inject arbitrary web scripts or HTML via an HTML e-email message.

Who is impacted by CVE-2013-0538?

Users of IBM Lotus Notes versions 8.x before 8.5.3 FP4 Interim Fix 1 and 9.0 before Interim Fix 1 are at risk.

Vulnerability/
CVE-2013-0538

medium

4.3

CWE

1/5/2013

6/8/2024

CVE-2013-0538: XSS

First published: Wed May 01 2013(Updated: )

Cross-site scripting (XSS) vulnerability in IBM Lotus Notes 8.x before 8.5.3 FP4 Interim Fix 1 and 9.0 before Interim Fix 1 allows remote attackers to inject arbitrary web script or HTML via a SCRIPT element in an HTML e-mail message, aka SPRs JMOY95BLM6 and JMOY95BN49.

Credit: psirt@us.ibm.com

Affected Software	Affected Version	How to fix
IBM Lotus Notes	=8.0
IBM Lotus Notes	=8.0.0
IBM Lotus Notes	=8.0.1
IBM Lotus Notes	=8.0.2
IBM Lotus Notes	=8.0.2.0
IBM Lotus Notes	=8.0.2.1
IBM Lotus Notes	=8.0.2.2
IBM Lotus Notes	=8.0.2.3
IBM Lotus Notes	=8.0.2.4
IBM Lotus Notes	=8.0.2.5
IBM Lotus Notes	=8.0.2.6
IBM Lotus Notes	=8.5
IBM Lotus Notes	=8.5.0.0
IBM Lotus Notes	=8.5.0.1
IBM Lotus Notes	=8.5.1
IBM Lotus Notes	=8.5.1.0
IBM Lotus Notes	=8.5.1.1
IBM Lotus Notes	=8.5.1.2
IBM Lotus Notes	=8.5.1.3
IBM Lotus Notes	=8.5.1.4
IBM Lotus Notes	=8.5.1.5
IBM Lotus Notes	=8.5.2.0
IBM Lotus Notes	=8.5.2.1
IBM Lotus Notes	=8.5.2.2
IBM Lotus Notes	=8.5.2.3
IBM Lotus Notes	=8.5.3
IBM Lotus Notes	=8.5.3.1
IBM Lotus Notes	=8.5.3.2
IBM Lotus Notes	=8.5.3.3
IBM Lotus Notes	=9.0.0.0

Never miss a vulnerability like this again

Reference Links

Frequently Asked Questions

What is the severity of CVE-2013-0538?
CVE-2013-0538 has a moderate severity level as it involves a cross-site scripting vulnerability.
How do I fix CVE-2013-0538?
To fix CVE-2013-0538, upgrade IBM Lotus Notes to version 8.5.3 FP4 Interim Fix 1 or version 9.0 Interim Fix 1 or later.
What are the affected versions for CVE-2013-0538?
CVE-2013-0538 affects IBM Lotus Notes versions 8.0 to 8.5.3 before the specified fixes and version 9.0 before Interim Fix 1.
What is the impact of CVE-2013-0538?
The impact of CVE-2013-0538 allows attackers to inject arbitrary web scripts or HTML via an HTML e-email message.
Who is impacted by CVE-2013-0538?
Users of IBM Lotus Notes versions 8.x before 8.5.3 FP4 Interim Fix 1 and 9.0 before Interim Fix 1 are at risk.

collector/nvd-index
agent/type
agent/softwarecombine
collector/mitre-cve
source/MITRE
agent/severity
agent/author
agent/last-modified-date
agent/weakness
agent/references
agent/tags
agent/description
agent/first-publish-date
agent/event
agent/source
vendor/ibm
canonical/ibm lotus notes
version/ibm lotus notes/8.0
version/ibm lotus notes/8.0.0
version/ibm lotus notes/8.0.1
version/ibm lotus notes/8.0.2
version/ibm lotus notes/8.0.2.0
version/ibm lotus notes/8.0.2.1
version/ibm lotus notes/8.0.2.2
version/ibm lotus notes/8.0.2.3
version/ibm lotus notes/8.0.2.4
version/ibm lotus notes/8.0.2.5
version/ibm lotus notes/8.0.2.6
version/ibm lotus notes/8.5
version/ibm lotus notes/8.5.0.0
version/ibm lotus notes/8.5.0.1
version/ibm lotus notes/8.5.1
version/ibm lotus notes/8.5.1.0
version/ibm lotus notes/8.5.1.1
version/ibm lotus notes/8.5.1.2
version/ibm lotus notes/8.5.1.3
version/ibm lotus notes/8.5.1.4
version/ibm lotus notes/8.5.1.5
version/ibm lotus notes/8.5.2.0
version/ibm lotus notes/8.5.2.1
version/ibm lotus notes/8.5.2.2
version/ibm lotus notes/8.5.2.3
version/ibm lotus notes/8.5.3
version/ibm lotus notes/8.5.3.1
version/ibm lotus notes/8.5.3.2
version/ibm lotus notes/8.5.3.3
version/ibm lotus notes/9.0.0.0