Vulnerability Description
Cross-site scripting (XSS) vulnerability in EMC Smarts IP Manager, Smarts Service Assurance Manager, Smarts Server Manager, Smarts VoIP Availability Manager, Smarts Network Protocol Manager, and Smarts MPLS Manager before 9.2 allows remote attackers to inject arbitrary web script or HTML via a crafted URL.
CVSS Score
MEDIUM
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Emc | Smarts Ip Manager | 9.1 |
| Emc | Smarts Mpls Manager | 9.1 |
| Emc | Smarts Network Protocol Manager | 9.1 |
| Emc | Smarts Server Manager | 9.1 |
| Emc | Smarts Services Assurance Manager | 9.1 |
| Emc | Smarts Voip Availability Manager | 9.1 |
Related Weaknesses (CWE)
References
- http://archives.neohapsis.com/archives/bugtraq/2013-03/0152.html
- http://archives.neohapsis.com/archives/bugtraq/2013-03/0152.html
FAQ
What is CVE-2013-0936?
CVE-2013-0936 is a vulnerability with a CVSS score of 4.3 (MEDIUM). Cross-site scripting (XSS) vulnerability in EMC Smarts IP Manager, Smarts Service Assurance Manager, Smarts Server Manager, Smarts VoIP Availability Manager, Smarts Network Protocol Manager, and Smart...
How severe is CVE-2013-0936?
CVE-2013-0936 has been rated MEDIUM with a CVSS base score of 4.3/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2013-0936?
Check the references section above for vendor advisories and patch information. Affected products include: Emc Smarts Ip Manager, Emc Smarts Mpls Manager, Emc Smarts Network Protocol Manager, Emc Smarts Server Manager, Emc Smarts Services Assurance Manager.