Cross-Site Scripting Vulnerability in IBM Domino iNotes
CVE-2013-3990

Currently unrated

Key Information:

Vendor
IBM
Status
Lotus Domino
Vendor
CVE Published:
9 August 2013

Summary

This vulnerability permits remote attackers to exploit the MIME email functionality within IBM Domino's iNotes. By leveraging unspecified vectors, attackers can inject arbitrary web scripts or HTML, potentially leading to unauthorized access or manipulation of user sessions. It is critical for users of affected versions to apply necessary updates or mitigations to safeguard against potential exploitation.

References

http://www-01.ibm.com/support/docview.wss?uid=swg21644599
x_refsource_CONFIRM
http://www-01.ibm.com/support/docview.wss?uid=swg21645503
x_refsource_CONFIRM
https://exchange.xforce.ibmcloud.com/vulnerabilities/84971
vdb-entryx_refsource_XF

Timeline

  • Vulnerability published

  • Vulnerability Reserved

.