Vulnerability Description
Cross-site scripting (XSS) vulnerability in IBM SPSS Analytical Decision Management 6.1 before IF1, 6.2 before IF1, and 7.0 before FP1 IF6 allows remote authenticated users to inject arbitrary web script or HTML via vectors involving addition of script to a page.
CVSS Score
LOW
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Ibm | Spss Analytical Decision Management | 6.1.0.0 |
Related Weaknesses (CWE)
References
- http://www-01.ibm.com/support/docview.wss?uid=swg21648929Vendor Advisory
- https://exchange.xforce.ibmcloud.com/vulnerabilities/86441
- http://www-01.ibm.com/support/docview.wss?uid=swg21648929Vendor Advisory
- https://exchange.xforce.ibmcloud.com/vulnerabilities/86441
FAQ
What is CVE-2013-4048?
CVE-2013-4048 is a vulnerability with a CVSS score of 3.5 (LOW). Cross-site scripting (XSS) vulnerability in IBM SPSS Analytical Decision Management 6.1 before IF1, 6.2 before IF1, and 7.0 before FP1 IF6 allows remote authenticated users to inject arbitrary web scr...
How severe is CVE-2013-4048?
CVE-2013-4048 has been rated LOW with a CVSS base score of 3.5/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2013-4048?
Check the references section above for vendor advisories and patch information. Affected products include: Ibm Spss Analytical Decision Management.