Unrated severityNVD Advisory· Published Apr 27, 2013· Updated Jun 16, 2026
CVE-2013-0572
CVE-2013-0572
Description
Cross-site scripting (XSS) vulnerability in IBM Document Connect for Application Support Facility (aka DC4ASF) before 1.0.0.1218 in Application Support Facility (ASF) 3.4 for z/OS on Windows, Linux, and AIX allows remote authenticated users to inject content, and conduct phishing attacks, via unspecified vectors.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
6cpe:2.3:a:ibm:application_support_facility:3.4.0:-:*:*:*:aix:*:*+ 3 more
- cpe:2.3:a:ibm:application_support_facility:3.4.0:-:*:*:*:aix:*:*
- cpe:2.3:a:ibm:application_support_facility:3.4.0:-:*:*:*:linux_kernel:*:*
- cpe:2.3:a:ibm:application_support_facility:3.4.0:-:*:*:*:windows:*:*
- cpe:2.3:a:ibm:application_support_facility:3.4.0:-:*:*:*:z\/os:*:*
cpe:2.3:a:ibm:document_connect_for_application_support_facility:*:*:*:*:*:*:*:*+ 1 more
- cpe:2.3:a:ibm:document_connect_for_application_support_facility:*:*:*:*:*:*:*:*range: <=1.0.0.1204
- (no CPE)range: <1.0.0.1218
Patches
Vulnerability mechanics
References
2- www-01.ibm.com/support/docview.wssnvdVendor Advisory
- exchange.xforce.ibmcloud.com/vulnerabilities/83247nvd
News mentions
0No linked articles in our index yet.