Unrated severityNVD Advisory· Published Jan 21, 2015· Updated Jun 17, 2026
CVE-2015-0513
CVE-2015-0513
Description
Multiple cross-site scripting (XSS) vulnerabilities in the administrative user interface in EMC M&R (aka Watch4Net) before 6.5u1 and ViPR SRM before 3.6.1 allow remote authenticated users to inject arbitrary web script or HTML by leveraging privileged access to set crafted values of unspecified fields.
Affected products
4cpe:2.3:a:emc:vipr_srm:*:*:*:*:*:*:*:*+ 1 more
- cpe:2.3:a:emc:vipr_srm:*:*:*:*:*:*:*:*range: <=3.6.0
- (no CPE)range: <3.6.1
cpe:2.3:a:emc:watch4net:*:*:*:*:*:*:*:*+ 1 more
- cpe:2.3:a:emc:watch4net:*:*:*:*:*:*:*:*range: <=6.5
- (no CPE)range: <6.5u1
Patches
Vulnerability mechanics
References
3- www.securityfocus.com/bid/72259nvdThird Party AdvisoryVDB Entry
- archives.neohapsis.com/archives/bugtraq/2015-01/0092.htmlnvdBroken Link
- www.securitytracker.com/id/1031567nvd
News mentions
0No linked articles in our index yet.