NVD

Id
33694  
Name
CVE-2014-6100  
Description
Cross-site scripting (XSS) vulnerability in the Admin UI in IBM Tivoli Directory Server 6.1 before 6.1.0.64-ISS-ITDS-IF0064, 6.2 before 6.2.0.39-ISS-ITDS-FP0039, and 6.3 before 6.3.0.33-ISS-ITDS-IF0033, and IBM Security Directory Server 6.3.1 before 6.3.1.7-ISS-ISDS-IF0007, allows remote authenticated users to inject arbitrary web script or HTML via a crafted URL.  
Reject
 
CVSS Version
2  
CVSS Score
3.5  
Severity
Low  
CVSS Base Score
3.5  
CVSS Impact Subscore
2.9  
CVSS Exploit Subscore
6.8  
CVSS Vector
(AV:N/AC:M/Au:S/C:N/I:P/A:N)  
Pub Date
2017-01-19  
Published
2014-10-18  
Modified Date
2015-11-06  
Seq
2014-6100  

Actions

Related NVD References

Id NVD Id NVD No. Reference Actions
175013 33694 CVE-2014-6100 http://www-01.ibm.com/support/docview.wss?uid=swg21686581  View
175014 33694 CVE-2014-6100 ibm-sds-cve20146100-xss(96005)  View

Related JVN

Id Name Title Summary Cveinfo Name Cveinfo Id Nvdinfo Name Nvdinfo Id Cvssv2 Cvssv3 Jvnurl Published Date Last Updated Date Actions
16125 JVNDB-2014-005000 IBM Tivoli Directory Server および IBM Security Directory Server の Admin UI におけるクロスサイトスクリプティングの脆弱性 IBM Tivoli Directory Server および IBM Security Directory Server の Admin UI には、クロスサイトスクリプティングの脆弱性が存在します。 CVE-2014-6100 73391 CVE-2014-6100 33694 3.5 http://jvndb.jvn.jp/ja/contents/2014/JVNDB-2014-005000.html 2014-10-08 2014-10-27 View