PT-2013-4786 · Ibm · Ibm Bladecenter+1

Published

2013-08-16

Updated

2017-08-29

CVE-2013-4007

CVSS v2.0

3.5

Low

Vector

AV:N/AC:M/Au:S/C:N/I:P/A:N

Name of the Vulnerable Software and Affected Versions IBM BladeCenter systems with Advanced Management Module (AMM) firmware versions prior to BBET64G and BPET64G

Description A cross-site scripting (XSS) issue exists, allowing remote attackers to inject arbitrary web script or HTML. This could potentially lead to unauthorized actions on the affected system.

Recommendations For IBM BladeCenter systems with AMM firmware versions prior to BBET64G, update to firmware version BBET64G or later. For IBM BladeCenter systems with AMM firmware versions prior to BPET64G, update to firmware version BPET64G or later.

Fix

XSS

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-79

Related Identifiers

CVE-2013-4007

Affected Products

Advanced Management Module

Ibm Bladecenter

PT-2013-4786 · Ibm · Ibm Bladecenter+1

CVE-2013-4007

Weakness Enumeration

Related Identifiers

Affected Products

References · 4