Unrated severityNVD Advisory· Published Jul 19, 2013· Updated Apr 29, 2026

CVE-2013-3275

Description

EMC Avamar Server and Avamar Virtual Edition before 7.0 on Data Store Gen3, Gen4, and Gen4s platforms do not properly restrict use of FRAME elements, which makes it easier for remote attackers to obtain sensitive information via a crafted web site, related to "cross frame scripting vulnerabilities."

Affected products

EMC Corporation/Avamar Server5 versions
cpe:2.3:a:emc:avamar_server:*:*:*:*:*:*:*:*+ 4 more
- cpe:2.3:a:emc:avamar_server:*:*:*:*:*:*:*:*range: <=6.1
- cpe:2.3:a:emc:avamar_server:4.0:*:*:*:*:*:*:*
- cpe:2.3:a:emc:avamar_server:4.1:*:*:*:*:*:*:*
- cpe:2.3:a:emc:avamar_server:5.0:*:*:*:*:*:*:*
- cpe:2.3:a:emc:avamar_server:6.0:*:*:*:*:*:*:*
EMC Corporation/Avamar Server Virtual Edition5 versions
cpe:2.3:a:emc:avamar_server_virtual_edition:*:*:*:*:*:*:*:*+ 4 more
- cpe:2.3:a:emc:avamar_server_virtual_edition:*:*:*:*:*:*:*:*range: <=6.1
- cpe:2.3:a:emc:avamar_server_virtual_edition:4.0:*:*:*:*:*:*:*
- cpe:2.3:a:emc:avamar_server_virtual_edition:4.1:*:*:*:*:*:*:*
- cpe:2.3:a:emc:avamar_server_virtual_edition:5.0:*:*:*:*:*:*:*
- cpe:2.3:a:emc:avamar_server_virtual_edition:6.0:*:*:*:*:*:*:*

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

archives.neohapsis.com/archives/bugtraq/2013-07/0114.htmlnvd

News mentions

No linked articles in our index yet.

cvss	0.000
epss	0.000
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000