What is the severity of CVE-2013-0587?

CVE-2013-0587 has been classified as a medium severity vulnerability due to its potential impact on the application through XSS attacks.

How do I fix CVE-2013-0587?

To fix CVE-2013-0587, ensure you update IBM WebSphere Portal to version 8.0.0.1 CF07 or apply available patches.

What types of attacks are possible with CVE-2013-0587?

CVE-2013-0587 allows remote attackers to perform cross-site scripting attacks, which may lead to session hijacking or information theft.

Which versions of IBM WebSphere Portal are affected by CVE-2013-0587?

CVE-2013-0587 affects multiple versions of IBM WebSphere Portal, including 5.1.0.x, 6.0.x, 7.0.0.x, and 8.0.0.x up to 8.0.0.1.

Is there a workaround for CVE-2013-0587 while waiting for a fix?

There are no official workarounds released for CVE-2013-0587, so it is recommended to apply the necessary update as soon as possible.

Vulnerability/
CVE-2013-0587

medium

4.3

CWE

16/8/2013

6/8/2024

CVE-2013-0587: XSS

First published: Fri Aug 16 2013(Updated: )

Multiple cross-site scripting (XSS) vulnerabilities in IBM WebSphere Portal before 8.0.0.1 CF07 allow remote attackers to inject arbitrary web script or HTML via vectors involving the (1) Portal, (2) Portal 7.0.0.2, (3) Portal 8.0, or (4) PortalWeb2 theme.

Credit: psirt@us.ibm.com

Affected Software	Affected Version	How to fix
IBM WebSphere Portal	<=8.0.0.1
IBM WebSphere Portal	=5.1.0.0
IBM WebSphere Portal	=5.1.0.1
IBM WebSphere Portal	=5.1.0.2
IBM WebSphere Portal	=5.1.0.3
IBM WebSphere Portal	=5.1.0.4
IBM WebSphere Portal	=5.1.0.5
IBM WebSphere Portal	=6.0.0.0
IBM WebSphere Portal	=6.0.0.1
IBM WebSphere Portal	=6.0.0.2
IBM WebSphere Portal	=6.0.0.3
IBM WebSphere Portal	=6.0.0.4
IBM WebSphere Portal	=6.0.1.0
IBM WebSphere Portal	=6.0.1.1
IBM WebSphere Portal	=6.0.1.2
IBM WebSphere Portal	=6.0.1.3
IBM WebSphere Portal	=6.0.1.4
IBM WebSphere Portal	=6.0.1.5
IBM WebSphere Portal	=6.0.1.5-wp6015_008_01
IBM WebSphere Portal	=6.0.1.6
IBM WebSphere Portal	=6.0.1.7
IBM WebSphere Portal	=6.1.0.0
IBM WebSphere Portal	=6.1.0.1
IBM WebSphere Portal	=6.1.0.2
IBM WebSphere Portal	=6.1.0.3
IBM WebSphere Portal	=6.1.5.0
IBM WebSphere Portal	=7.0.0.0
IBM WebSphere Portal	=7.0.0.0-cf001
IBM WebSphere Portal	=7.0.0.1
IBM WebSphere Portal	=7.0.0.1-cf002
IBM WebSphere Portal	=7.0.0.1-cf003
IBM WebSphere Portal	=7.0.0.1-cf004
IBM WebSphere Portal	=7.0.0.1-cf005
IBM WebSphere Portal	=7.0.0.1-cf006
IBM WebSphere Portal	=7.0.0.1-cf007
IBM WebSphere Portal	=7.0.0.1-cf008
IBM WebSphere Portal	=7.0.0.1-cf009
IBM WebSphere Portal	=7.0.0.1-cf010
IBM WebSphere Portal	=7.0.0.1-cf019
IBM WebSphere Portal	=7.0.0.2
IBM WebSphere Portal	=7.0.0.2-cf011
IBM WebSphere Portal	=7.0.0.2-cf012
IBM WebSphere Portal	=7.0.0.2-cf013
IBM WebSphere Portal	=7.0.0.2-cf014
IBM WebSphere Portal	=7.0.0.2-cf015
IBM WebSphere Portal	=7.0.0.2-cf016
IBM WebSphere Portal	=7.0.0.2-cf017
IBM WebSphere Portal	=7.0.0.2-cf018
IBM WebSphere Portal	=7.0.0.2-cf019
IBM WebSphere Portal	=7.0.0.2-cf020
IBM WebSphere Portal	=7.0.0.2-cf021
IBM WebSphere Portal	=7.0.0.2-cf022
IBM WebSphere Portal	=8.0
IBM WebSphere Portal	=8.0.0.0
IBM WebSphere Portal	=8.0.0.0-cf01
IBM WebSphere Portal	=8.0.0.0-cf02
IBM WebSphere Portal	=8.0.0.0-cf03
IBM WebSphere Portal	=8.0.0.0-cf04
IBM WebSphere Portal	=8.0.0.0-cf05
IBM WebSphere Portal	=8.0.0.1
IBM WebSphere Portal	=8.0.0.1-cf04
IBM WebSphere Portal	=8.0.0.1-cf05

Never miss a vulnerability like this again

Reference Links

Frequently Asked Questions

What is the severity of CVE-2013-0587?
CVE-2013-0587 has been classified as a medium severity vulnerability due to its potential impact on the application through XSS attacks.
How do I fix CVE-2013-0587?
To fix CVE-2013-0587, ensure you update IBM WebSphere Portal to version 8.0.0.1 CF07 or apply available patches.
What types of attacks are possible with CVE-2013-0587?
CVE-2013-0587 allows remote attackers to perform cross-site scripting attacks, which may lead to session hijacking or information theft.
Which versions of IBM WebSphere Portal are affected by CVE-2013-0587?
CVE-2013-0587 affects multiple versions of IBM WebSphere Portal, including 5.1.0.x, 6.0.x, 7.0.0.x, and 8.0.0.x up to 8.0.0.1.
Is there a workaround for CVE-2013-0587 while waiting for a fix?
There are no official workarounds released for CVE-2013-0587, so it is recommended to apply the necessary update as soon as possible.

collector/nvd-index
agent/type
agent/softwarecombine
collector/mitre-cve
source/MITRE
agent/references
agent/weakness
agent/severity
agent/last-modified-date
agent/author
agent/tags
agent/description
agent/first-publish-date
agent/event
agent/source
vendor/ibm
canonical/ibm websphere portal
version/ibm websphere portal/8.0.0.1
version/ibm websphere portal/5.1.0.0
version/ibm websphere portal/5.1.0.1
version/ibm websphere portal/5.1.0.2
version/ibm websphere portal/5.1.0.3
version/ibm websphere portal/5.1.0.4
version/ibm websphere portal/5.1.0.5
version/ibm websphere portal/6.0.0.0
version/ibm websphere portal/6.0.0.1
version/ibm websphere portal/6.0.0.2
version/ibm websphere portal/6.0.0.3
version/ibm websphere portal/6.0.0.4
version/ibm websphere portal/6.0.1.0
version/ibm websphere portal/6.0.1.1
version/ibm websphere portal/6.0.1.2
version/ibm websphere portal/6.0.1.3
version/ibm websphere portal/6.0.1.4
version/ibm websphere portal/6.0.1.5
version/ibm websphere portal/6.0.1.5-wp6015_008_01
version/ibm websphere portal/6.0.1.6
version/ibm websphere portal/6.0.1.7
version/ibm websphere portal/6.1.0.0
version/ibm websphere portal/6.1.0.1
version/ibm websphere portal/6.1.0.2
version/ibm websphere portal/6.1.0.3
version/ibm websphere portal/6.1.5.0
version/ibm websphere portal/7.0.0.0
version/ibm websphere portal/7.0.0.0-cf001
version/ibm websphere portal/7.0.0.1
version/ibm websphere portal/7.0.0.1-cf002
version/ibm websphere portal/7.0.0.1-cf003
version/ibm websphere portal/7.0.0.1-cf004
version/ibm websphere portal/7.0.0.1-cf005
version/ibm websphere portal/7.0.0.1-cf006
version/ibm websphere portal/7.0.0.1-cf007
version/ibm websphere portal/7.0.0.1-cf008
version/ibm websphere portal/7.0.0.1-cf009
version/ibm websphere portal/7.0.0.1-cf010
version/ibm websphere portal/7.0.0.1-cf019
version/ibm websphere portal/7.0.0.2
version/ibm websphere portal/7.0.0.2-cf011
version/ibm websphere portal/7.0.0.2-cf012
version/ibm websphere portal/7.0.0.2-cf013
version/ibm websphere portal/7.0.0.2-cf014
version/ibm websphere portal/7.0.0.2-cf015
version/ibm websphere portal/7.0.0.2-cf016
version/ibm websphere portal/7.0.0.2-cf017
version/ibm websphere portal/7.0.0.2-cf018
version/ibm websphere portal/7.0.0.2-cf019
version/ibm websphere portal/7.0.0.2-cf020
version/ibm websphere portal/7.0.0.2-cf021
version/ibm websphere portal/7.0.0.2-cf022
version/ibm websphere portal/8.0
version/ibm websphere portal/8.0.0.0
version/ibm websphere portal/8.0.0.0-cf01
version/ibm websphere portal/8.0.0.0-cf02
version/ibm websphere portal/8.0.0.0-cf03
version/ibm websphere portal/8.0.0.0-cf04
version/ibm websphere portal/8.0.0.0-cf05
version/ibm websphere portal/8.0.0.1-cf04
version/ibm websphere portal/8.0.0.1-cf05

CVE-2013-0587: XSS

Never miss a vulnerability like this again

Reference Links

Frequently Asked Questions

What is the severity of CVE-2013-0587?

How do I fix CVE-2013-0587?

What types of attacks are possible with CVE-2013-0587?

Which versions of IBM WebSphere Portal are affected by CVE-2013-0587?

Is there a workaround for CVE-2013-0587 while waiting for a fix?

Company

Resources

Contact

Frequently Asked Questions

What is the severity of CVE-2013-0587?

How do I fix CVE-2013-0587?

What types of attacks are possible with CVE-2013-0587?

Which versions of IBM WebSphere Portal are affected by CVE-2013-0587?

Is there a workaround for CVE-2013-0587 while waiting for a fix?