CVE-2013-3275
Last modified
CVE-2013-3275 is a vulnerability of currently unknown severity. EMC Avamar Server and Avamar Virtual Edition before 7.0 on Data Store Gen3, Gen4, and Gen4s platforms do not properly restrict use of FRAME elements, which makes it easier for remote attackers to obtain sensitive information via a crafted web site, related to "cross frame scripting vulnerabilities.". EPSS estimates a 0.81% chance of exploitation in the next 30 days.
Description
EMC Avamar Server and Avamar Virtual Edition before 7.0 on Data Store Gen3, Gen4, and Gen4s platforms do not properly restrict use of FRAME elements, which makes it easier for remote attackers to obtain sensitive information via a crafted web site, related to "cross frame scripting vulnerabilities."
Metrics
Weakness Enumeration
Affected Software
| Vendor | Product | Versions |
|---|---|---|
| Emc | Avamar Server | <= 6.1 |
| Emc | Avamar Server | 4.0 |
| Emc | Avamar Server | 4.1 |
| Emc | Avamar Server | 5.0 |
| Emc | Avamar Server | 6.0 |
| Emc | Avamar Server Virtual Edition | <= 6.1 |
| Emc | Avamar Server Virtual Edition | 4.0 |
| Emc | Avamar Server Virtual Edition | 4.1 |
| Emc | Avamar Server Virtual Edition | 5.0 |
| Emc | Avamar Server Virtual Edition | 6.0 |
References
Timeline
- Published
- Last Modified
- Status
- Modified
Frequently Asked Questions
What is CVE-2013-3275?
How severe is CVE-2013-3275?
How do I fix CVE-2013-3275?
Are you affected by CVE-2013-3275?
Run a free Strix scan to check your systems for this vulnerability.
Scan your code nowSource: NVD / NIST