CVE-2013-3281
Last modified
CVE-2013-3281 is a vulnerability of currently unknown severity. Cross-site scripting (XSS) vulnerability in EMC Documentum Webtop before 6.7 SP2 P07, Documentum WDK before 6.7 SP2 P07, Documentum Taskspace before 6.7 SP2 P07, Documentum Records Manager before 6.7 SP2 P07, Documentum Web Publisher before 6.5 SP7, Documentum Digital Asset Manager before 6.5 SP6, Documentum Administrator before 6.7 SP2 P07, and Documentum Capital Projects before 1.8 P01 allows remote attackers to inject arbitrary web script or HTML via a crafted parameter in a URL.. EPSS estimates a 1.00% chance of exploitation in the next 30 days.
Description
Cross-site scripting (XSS) vulnerability in EMC Documentum Webtop before 6.7 SP2 P07, Documentum WDK before 6.7 SP2 P07, Documentum Taskspace before 6.7 SP2 P07, Documentum Records Manager before 6.7 SP2 P07, Documentum Web Publisher before 6.5 SP7, Documentum Digital Asset Manager before 6.5 SP6, Documentum Administrator before 6.7 SP2 P07, and Documentum Capital Projects before 1.8 P01 allows remote attackers to inject arbitrary web script or HTML via a crafted parameter in a URL.
Metrics
Weakness Enumeration
Affected Software
| Vendor | Product | Versions | Update |
|---|---|---|---|
| Emc | Documentum Taskspace | <= 6.7 | Sp2 |
| Emc | Documentum Taskspace | 6.7 | — |
| Emc | Documentum Capital Projects | <= 1.8 | — |
| Emc | Documentum Wdk | <= 6.7 | Sp2 |
| Emc | Documentum Wdk | 6.7 | — |
| Emc | Documentum Digital Asset Manager | <= 6.5 | Sp5 |
| Emc | Documentum Digital Asset Manager | 6.5 | — |
| Emc | Documentum Administrator | <= 6.7 | Sp2 |
| Emc | Documentum Administrator | 6.7 | — |
| Emc | Documentum Webtop | <= 6.7 | Sp2 |
| Emc | Documentum Webtop | 6.7 | — |
| Emc | Documentum Web Publisher | <= 6.5 | Sp6 |
| Emc | Documentum Web Publisher | 6.5 | — |
References
Timeline
- Published
- Last Modified
- Status
- Modified
Frequently Asked Questions
What is CVE-2013-3281?
How severe is CVE-2013-3281?
How do I fix CVE-2013-3281?
Are you affected by CVE-2013-3281?
Run a free Strix scan to check your systems for this vulnerability.
Scan your code nowSource: NVD / NIST