NVD

Id
41390  
Name
CVE-2013-6315  
Description
IBM InfoSphere Enterprise Records 4.5.1 before 4.5.1.7-IER-IF001 and Enterprise Records 5.1.1 before 5.1.1.1-IER-IF003 do not properly restrict use of FRAME elements, which makes it easier for remote attackers to conduct clickjacking attacks via a crafted web site.  
Reject
 
CVSS Version
2  
CVSS Score
4.3  
Severity
Medium  
CVSS Base Score
4.3  
CVSS Impact Subscore
2.9  
CVSS Exploit Subscore
8.6  
CVSS Vector
(AV:N/AC:M/Au:N/C:N/I:P/A:N)  
Pub Date
2017-01-18  
Published
2014-03-06  
Modified Date
2014-03-07  
Seq
2013-6315  

Actions

Related NVD References

Id NVD Id NVD No. Reference Actions
209099 41390 CVE-2013-6315 http://www-01.ibm.com/support/docview.wss?uid=swg21662911  View
209100 41390 CVE-2013-6315 ibm-enterprise-cve20136315-clickjacking(88596)  View

Related JVN

Id Name Title Summary Cveinfo Name Cveinfo Id Nvdinfo Name Nvdinfo Id Cvssv2 Cvssv3 Jvnurl Published Date Last Updated Date Actions
24550 JVNDB-2013-006125 IBM InfoSphere Enterprise Records および Enterprise Records におけるクリックジャッキング攻撃を実行される脆弱性 IBM InfoSphere Enterprise Records および Enterprise Records は、FRAME 要素の利用を適切に制限しないため、クリックジャッキング攻撃を実行される脆弱性が存在します。 CVE-2013-6315 66257 CVE-2013-6315 41390 4.3 http://jvndb.jvn.jp/ja/contents/2013/JVNDB-2013-006125.html 2013-10-31 2014-03-07 View