Unrated severityNVD Advisory· Published Jan 21, 2015· Updated May 6, 2026

CVE-2015-0513

Description

Multiple cross-site scripting (XSS) vulnerabilities in the administrative user interface in EMC M&R (aka Watch4Net) before 6.5u1 and ViPR SRM before 3.6.1 allow remote authenticated users to inject arbitrary web script or HTML by leveraging privileged access to set crafted values of unspecified fields.

Affected products

EMC Corporation/Vipr Srm
cpe:2.3:a:emc:vipr_srm:*:*:*:*:*:*:*:*
Range: <=3.6.0
EMC Corporation/Watch4net
cpe:2.3:a:emc:watch4net:*:*:*:*:*:*:*:*
Range: <=6.5

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

www.securityfocus.com/bid/72259nvdThird Party AdvisoryVDB Entry
archives.neohapsis.com/archives/bugtraq/2015-01/0092.htmlnvdBroken Link
www.securitytracker.com/id/1031567nvd

News mentions

No linked articles in our index yet.

cvss	0.000
epss	0.000
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000