Vulnerability Description
Cross-site scripting (XSS) vulnerability in FileNet P8 Platform Documentation Installable Info Center 4.5.1 through 5.2.0 in IBM FileNet Business Process Manager 4.5.1 through 5.1.0, FileNet Content Manager 4.5.1 through 5.2.0, and Case Foundation 5.2.0 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.
CVSS Score
MEDIUM
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Ibm | Filenet Case Foundation | 5.2.0 |
| Ibm | Filenet Content Manager | 4.5.0 |
| Ibm | Filenet P8 Business Process Manager | 4.5.1 |
Related Weaknesses (CWE)
References
- http://secunia.com/advisories/56500
- http://www.ibm.com/support/docview.wss?uid=swg21662360Vendor Advisory
- http://www.securityfocus.com/bid/65045
- https://exchange.xforce.ibmcloud.com/vulnerabilities/89862
- http://secunia.com/advisories/56500
- http://www.ibm.com/support/docview.wss?uid=swg21662360Vendor Advisory
- http://www.securityfocus.com/bid/65045
- https://exchange.xforce.ibmcloud.com/vulnerabilities/89862
FAQ
What is CVE-2013-6746?
CVE-2013-6746 is a vulnerability with a CVSS score of 4.3 (MEDIUM). Cross-site scripting (XSS) vulnerability in FileNet P8 Platform Documentation Installable Info Center 4.5.1 through 5.2.0 in IBM FileNet Business Process Manager 4.5.1 through 5.1.0, FileNet Content M...
How severe is CVE-2013-6746?
CVE-2013-6746 has been rated MEDIUM with a CVSS base score of 4.3/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2013-6746?
Check the references section above for vendor advisories and patch information. Affected products include: Ibm Filenet Case Foundation, Ibm Filenet Content Manager, Ibm Filenet P8 Business Process Manager.