CVE-2013-0572
Last modified
CVE-2013-0572 is a vulnerability of currently unknown severity. Cross-site scripting (XSS) vulnerability in IBM Document Connect for Application Support Facility (aka DC4ASF) before 1.0.0.1218 in Application Support Facility (ASF) 3.4 for z/OS on Windows, Linux, and AIX allows remote authenticated users to inject content, and conduct phishing attacks, via unspecified vectors.. EPSS estimates a 0.57% chance of exploitation in the next 30 days.
Description
Cross-site scripting (XSS) vulnerability in IBM Document Connect for Application Support Facility (aka DC4ASF) before 1.0.0.1218 in Application Support Facility (ASF) 3.4 for z/OS on Windows, Linux, and AIX allows remote authenticated users to inject content, and conduct phishing attacks, via unspecified vectors.
Metrics
Weakness Enumeration
Affected Software
| Vendor | Product | Versions |
|---|---|---|
| Ibm | Application Support Facility | 3.4.0 |
| Ibm | Document Connect For Application Support Facility | <= 1.0.0.1204 |
References
Timeline
- Published
- Last Modified
- Status
- Modified
Frequently Asked Questions
What is CVE-2013-0572?
How severe is CVE-2013-0572?
How do I fix CVE-2013-0572?
Are you affected by CVE-2013-0572?
Run a free Strix scan to check your systems for this vulnerability.
Scan your code nowSource: NVD / NIST