1. Home
  2. CVE Database
  3. CVE-2013-6198
MEDIUM · 4.3

CVE-2013-6198

Cross-site scripting (XSS) vulnerability in HP Service Manager WebTier and Windows Client 9.20 and 9.21 before 9.21.661 p8 allows remote attackers to inject arbitrary web script or HTML via unspecifie...

Vulnerability Description

Cross-site scripting (XSS) vulnerability in HP Service Manager WebTier and Windows Client 9.20 and 9.21 before 9.21.661 p8 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.

CVSS Score

4.3

MEDIUM

AV:N/AC:M/Au:N/C:N/I:P/A:N
Confidentiality
NONE
Integrity
PARTIAL
Availability
NONE

Affected Products

VendorProductVersions
HpService Manager9.20
HpService Manager Web Client9.20
HpService Manager Web Tier9.20

Related Weaknesses (CWE)

CWE-79

References

FAQ

What is CVE-2013-6198?

CVE-2013-6198 is a vulnerability with a CVSS score of 4.3 (MEDIUM). Cross-site scripting (XSS) vulnerability in HP Service Manager WebTier and Windows Client 9.20 and 9.21 before 9.21.661 p8 allows remote attackers to inject arbitrary web script or HTML via unspecifie...

How severe is CVE-2013-6198?

CVE-2013-6198 has been rated MEDIUM with a CVSS base score of 4.3/10. Review the CVSS metrics above for detailed severity breakdown.

Is there a patch for CVE-2013-6198?

Check the references section above for vendor advisories and patch information. Affected products include: Hp Service Manager, Hp Service Manager Web Client, Hp Service Manager Web Tier.