3.5
CVE-2014-6100
- EPSS 0.19%
- Veröffentlicht 19.10.2014 01:55:15
- Zuletzt bearbeitet 12.04.2025 10:46:40
- Quelle psirt@us.ibm.com
- Teams Watchlist Login
- Unerledigt Login
Cross-site scripting (XSS) vulnerability in the Admin UI in IBM Tivoli Directory Server 6.1 before 6.1.0.64-ISS-ITDS-IF0064, 6.2 before 6.2.0.39-ISS-ITDS-FP0039, and 6.3 before 6.3.0.33-ISS-ITDS-IF0033, and IBM Security Directory Server 6.3.1 before 6.3.1.7-ISS-ISDS-IF0007, allows remote authenticated users to inject arbitrary web script or HTML via a crafted URL.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
Ibm ≫ Security Directory Server Version6.3.1
Ibm ≫ Security Directory Server Version6.3.1.1
Ibm ≫ Security Directory Server Version6.3.1.2
Ibm ≫ Security Directory Server Version6.3.1.3
Ibm ≫ Security Directory Server Version6.3.1.4
Ibm ≫ Security Directory Server Version6.3.1.5
Ibm ≫ Security Directory Server Version6.3.1.6
Ibm ≫ Tivoli Directory Server Version6.1.0
Ibm ≫ Tivoli Directory Server Version6.1.0.0
Ibm ≫ Tivoli Directory Server Version6.1.0.1
Ibm ≫ Tivoli Directory Server Version6.1.0.2
Ibm ≫ Tivoli Directory Server Version6.1.0.3
Ibm ≫ Tivoli Directory Server Version6.1.0.4
Ibm ≫ Tivoli Directory Server Version6.1.0.5
Ibm ≫ Tivoli Directory Server Version6.1.0.6
Ibm ≫ Tivoli Directory Server Version6.1.0.7
Ibm ≫ Tivoli Directory Server Version6.1.0.8
Ibm ≫ Tivoli Directory Server Version6.1.0.9
Ibm ≫ Tivoli Directory Server Version6.1.0.10
Ibm ≫ Tivoli Directory Server Version6.1.0.11
Ibm ≫ Tivoli Directory Server Version6.1.0.12
Ibm ≫ Tivoli Directory Server Version6.1.0.13
Ibm ≫ Tivoli Directory Server Version6.1.0.14
Ibm ≫ Tivoli Directory Server Version6.1.0.15
Ibm ≫ Tivoli Directory Server Version6.1.0.17
Ibm ≫ Tivoli Directory Server Version6.1.0.18
Ibm ≫ Tivoli Directory Server Version6.1.0.19
Ibm ≫ Tivoli Directory Server Version6.1.0.20
Ibm ≫ Tivoli Directory Server Version6.1.0.21
Ibm ≫ Tivoli Directory Server Version6.1.0.22
Ibm ≫ Tivoli Directory Server Version6.1.0.23
Ibm ≫ Tivoli Directory Server Version6.1.0.24
Ibm ≫ Tivoli Directory Server Version6.1.0.25
Ibm ≫ Tivoli Directory Server Version6.1.0.26
Ibm ≫ Tivoli Directory Server Version6.1.0.27
Ibm ≫ Tivoli Directory Server Version6.1.0.28
Ibm ≫ Tivoli Directory Server Version6.1.0.29
Ibm ≫ Tivoli Directory Server Version6.1.0.30
Ibm ≫ Tivoli Directory Server Version6.1.0.31
Ibm ≫ Tivoli Directory Server Version6.1.0.32
Ibm ≫ Tivoli Directory Server Version6.1.0.33
Ibm ≫ Tivoli Directory Server Version6.1.0.34
Ibm ≫ Tivoli Directory Server Version6.1.0.35
Ibm ≫ Tivoli Directory Server Version6.1.0.36
Ibm ≫ Tivoli Directory Server Version6.1.0.37
Ibm ≫ Tivoli Directory Server Version6.1.0.38
Ibm ≫ Tivoli Directory Server Version6.1.0.39
Ibm ≫ Tivoli Directory Server Version6.1.0.45
Ibm ≫ Tivoli Directory Server Version6.1.0.46
Ibm ≫ Tivoli Directory Server Version6.1.0.47
Ibm ≫ Tivoli Directory Server Version6.1.0.48
Ibm ≫ Tivoli Directory Server Version6.1.0.63
Ibm ≫ Tivoli Directory Server Version6.2
Ibm ≫ Tivoli Directory Server Version6.2.0
Ibm ≫ Tivoli Directory Server Version6.2.0.0
Ibm ≫ Tivoli Directory Server Version6.2.0.1
Ibm ≫ Tivoli Directory Server Version6.2.0.2
Ibm ≫ Tivoli Directory Server Version6.2.0.3
Ibm ≫ Tivoli Directory Server Version6.2.0.4
Ibm ≫ Tivoli Directory Server Version6.2.0.5
Ibm ≫ Tivoli Directory Server Version6.2.0.6
Ibm ≫ Tivoli Directory Server Version6.2.0.7
Ibm ≫ Tivoli Directory Server Version6.2.0.8
Ibm ≫ Tivoli Directory Server Version6.2.0.10
Ibm ≫ Tivoli Directory Server Version6.2.0.11
Ibm ≫ Tivoli Directory Server Version6.2.0.12
Ibm ≫ Tivoli Directory Server Version6.2.0.13
Ibm ≫ Tivoli Directory Server Version6.2.0.14
Ibm ≫ Tivoli Directory Server Version6.2.0.15
Ibm ≫ Tivoli Directory Server Version6.2.0.19
Ibm ≫ Tivoli Directory Server Version6.2.0.20
Ibm ≫ Tivoli Directory Server Version6.2.0.21
Ibm ≫ Tivoli Directory Server Version6.2.0.22
Ibm ≫ Tivoli Directory Server Version6.2.0.38
Ibm ≫ Tivoli Directory Server Version6.3.0
Ibm ≫ Tivoli Directory Server Version6.3.0.0
Ibm ≫ Tivoli Directory Server Version6.3.0.1
Ibm ≫ Tivoli Directory Server Version6.3.0.2
Ibm ≫ Tivoli Directory Server Version6.3.0.8
Ibm ≫ Tivoli Directory Server Version6.3.0.9
Ibm ≫ Tivoli Directory Server Version6.3.0.10
Ibm ≫ Tivoli Directory Server Version6.3.0.32
Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.
Typ | Quelle | Score | Percentile |
---|---|---|---|
EPSS | FIRST.org | 0.19% | 0.375 |
Quelle | Base Score | Exploit Score | Impact Score | Vector String |
---|---|---|---|---|
nvd@nist.gov | 3.5 | 6.8 | 2.9 |
AV:N/AC:M/Au:S/C:N/I:P/A:N
|
CWE-79 Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')
The product does not neutralize or incorrectly neutralizes user-controllable input before it is placed in output that is used as a web page that is served to other users.