CVE-2013-6733 β€” Cross-site Scripting in IBM Sametime

CWE-79 β€” Cross-site Scripting4 documents4 sources
Severity
4.3MEDIUMNVD
EPSS
0.2%
top 53.41%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
1
IBM Sametime
Timeline
PublishedDec 17
Latest updateMay 17

Description

Cross-site scripting (XSS) vulnerability in the Web Application in the Classic Meeting Server in IBM Sametime 7.5.1.2 through 8.5.2.1 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.

CVSS vector

AV:N/AC:M/C:N/I:P/A:NExploitability: 8.6 | Impact: 2.9

Affected Packages1 packages

β–ΆNVDibm/sametime11 versions+10

πŸ”΄Vulnerability Details

2
GHSA
GHSA-c66h-2cjh-g4cj: Cross-site scripting (XSS) vulnerability in the Web Application in the Classic Meeting Server in IBM Sametime 7β†—2022-05-17
β–Ά
CVEList
CVE-2013-6733: Cross-site scripting (XSS) vulnerability in the Web Application in the Classic Meeting Server in IBM Sametime 7β†—2013-12-17
β–Ά

πŸ’¬Community

1
Bugzilla
CVE-2013-7444 CVE-2015-6737 CVE-2015-6736 CVE-2015-6727 CVE-2015-6733 CVE-2015-6732 CVE-2015-6731 CVE-2015-6730 CVE-2015-6728 CVE-2015-6729 CVE-2015-6735 CVE-2015-6734 mediawiki: multiple security fix↗2015-08-13
β–Ά
CVE-2013-6733 β€” Cross-site Scripting in IBM Sametime | cvebase