CVE-2006-2435

EPSS 0.93%
Published 17.05.2006 10:06:00
Last modified 03.04.2025 01:03:51
Source cve@mitre.org
Teams watchlist Login
Open Login

Unspecified vulnerability in IBM WebSphere Application Server 5.0.2 and earlier, and 5.1.1 and earlier, has unknown impact and attack vectors related to "Inserting certain script tags in urls [that] may allow unintended execution of scripts."

Affected products Warnungen 0 Metrics 2 CWE 0 References 11

Data is provided by the National Vulnerability Database (NVD)

Ibm ≫ Websphere Application Server Version5.0.0

Ibm ≫ Websphere Application Server Version5.0.1

Ibm ≫ Websphere Application Server Version5.0.2

Ibm ≫ Websphere Application Server Version5.1.0

Ibm ≫ Websphere Application Server Version5.1.1

Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.

EPSS Metriken
Type	Source	Score	Percentile
EPSS	FIRST.org	0.93%	0.752

CVSS Metriken
Source	Base Score	Exploit Score	Impact Score	Vector string
nvd@nist.gov	6.4	10	4.9	AV:N/AC:L/Au:N/C:P/I:P/A:N

http://archives.neohapsis.com/archives/bugtraq/2006-05/0175.html

Patch

http://secunia.com/advisories/20032

Patch

Vendor Advisory

http://securityreason.com/securityalert/910

http://www.vupen.com/english/advisories/2006/1736

http://www-1.ibm.com/support/docview.wss?rs=180&uid=swg27006879

Patch

http://www-1.ibm.com/support/docview.wss?rs=180&uid=swg27006881

Patch

http://www.vupen.com/english/advisories/2006/2552

http://www-1.ibm.com/support/search.wss?rs=0&q=PK15571&apar=only

Patch

https://nvd.nist.gov/vuln/detail/CVE-2006-2435

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2006-2435

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2006-2435

EUVD