Vulnerability Description
IBM/ECMClient/configure/explodedformat/navigator/header.jsp in IBM Content Navigator 2.0.0, 2.0.1 before 2.0.1.2-ICN-FP002, and 2.0.2 before 2.0.2.1-ICN-FP001 allows remote attackers to conduct clickjacking attacks via vectors involving FRAME elements.
CVSS Score
MEDIUM
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Ibm | Content Navigator | 2.0.0 |
Related Weaknesses (CWE)
References
- http://www-01.ibm.com/support/docview.wss?uid=swg21660223Vendor Advisory
- http://www.securitytracker.com/id/1037704
- https://exchange.xforce.ibmcloud.com/vulnerabilities/88358
- http://www-01.ibm.com/support/docview.wss?uid=swg21660223Vendor Advisory
- http://www.securitytracker.com/id/1037704
- https://exchange.xforce.ibmcloud.com/vulnerabilities/88358
FAQ
What is CVE-2013-5462?
CVE-2013-5462 is a vulnerability with a CVSS score of 4.3 (MEDIUM). IBM/ECMClient/configure/explodedformat/navigator/header.jsp in IBM Content Navigator 2.0.0, 2.0.1 before 2.0.1.2-ICN-FP002, and 2.0.2 before 2.0.2.1-ICN-FP001 allows remote attackers to conduct clickj...
How severe is CVE-2013-5462?
CVE-2013-5462 has been rated MEDIUM with a CVSS base score of 4.3/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2013-5462?
Check the references section above for vendor advisories and patch information. Affected products include: Ibm Content Navigator.