{"resultsPerPage":1,"startIndex":0,"totalResults":1,"format":"NVD_CVE","version":"2.0","timestamp":"2026-06-17T04:42:04.827","vulnerabilities":[{"cve":{"id":"CVE-2013-5968","sourceIdentifier":"cve@mitre.org","published":"2013-10-29T03:42:34.103","lastModified":"2026-04-29T01:13:23.040","vulnStatus":"Modified","cveTags":[],"descriptions":[{"lang":"en","value":"Cross-site scripting (XSS) vulnerability in CA SiteMinder 12.0 through 12.51, and SiteMinder 6 Web Agents, allows remote attackers to inject arbitrary web script or HTML via vectors involving a \" (double quote) character."},{"lang":"es","value":"Vulnerabilidad cross-site scripting (XSS) en CA SiteMinder de la version 12.0 hasta la 12.51, y SiteMinder 6 Web Agents,  permite a atacantes remotos inyectar secuencias de comandos web o HTML arbitrarias  a través de vectores que involucran un caracter \" (comillas dobles).\n"}],"metrics":{"cvssMetricV2":[{"source":"nvd@nist.gov","type":"Primary","cvssData":{"version":"2.0","vectorString":"AV:N/AC:M/Au:N/C:N/I:P/A:N","baseScore":4.3,"accessVector":"NETWORK","accessComplexity":"MEDIUM","authentication":"NONE","confidentialityImpact":"NONE","integrityImpact":"PARTIAL","availabilityImpact":"NONE"},"baseSeverity":"MEDIUM","exploitabilityScore":8.6,"impactScore":2.9,"acInsufInfo":false,"obtainAllPrivilege":false,"obtainUserPrivilege":false,"obtainOtherPrivilege":false,"userInteractionRequired":true}]},"weaknesses":[{"source":"nvd@nist.gov","type":"Primary","description":[{"lang":"en","value":"CWE-79"}]}],"configurations":[{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:ca:web_agents:6.0:*:*:*:*:*:*:*","matchCriteriaId":"F8088538-EAE6-42B3-BE00-8FF1BB68C597"}]}]},{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:broadcom:siteminder:12.0:sp1:*:*:*:*:*:*","matchCriteriaId":"E50A5C95-97A4-4E81-83F3-C5A78B20A48D"},{"vulnerable":true,"criteria":"cpe:2.3:a:broadcom:siteminder:12.0:sp2:*:*:*:*:*:*","matchCriteriaId":"CEE6EF84-DEE9-4109-AD6A-1D99A0F8CD43"},{"vulnerable":true,"criteria":"cpe:2.3:a:broadcom:siteminder:12.0:sp3:*:*:*:*:*:*","matchCriteriaId":"CD06221C-88A3-49C8-B92F-B0FD63FCA1E6"},{"vulnerable":true,"criteria":"cpe:2.3:a:broadcom:siteminder:12.5:*:*:*:*:*:*:*","matchCriteriaId":"FCD3FA2E-0964-4B29-B348-E0FBC29D052E"},{"vulnerable":true,"criteria":"cpe:2.3:a:broadcom:siteminder:12.51:*:*:*:*:*:*:*","matchCriteriaId":"2F0BE894-CFF5-4037-A59A-7B39AB4F4C05"}]}]}],"references":[{"url":"http://archives.neohapsis.com/archives/bugtraq/2013-10/0120.html","source":"cve@mitre.org"},{"url":"http://osvdb.org/98919","source":"cve@mitre.org"},{"url":"http://seclists.org/fulldisclosure/2013/Oct/230","source":"cve@mitre.org"},{"url":"http://www.securitytracker.com/id/1029237","source":"cve@mitre.org"},{"url":"https://support.ca.com/irj/portal/anonymous/phpsupcontent?contentID=%7B9B8E7A8A-2A00-4456-A7CC-8C2E74AA7EA5%7D","source":"cve@mitre.org"},{"url":"http://archives.neohapsis.com/archives/bugtraq/2013-10/0120.html","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"http://osvdb.org/98919","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"http://seclists.org/fulldisclosure/2013/Oct/230","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"http://www.securitytracker.com/id/1029237","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"https://support.ca.com/irj/portal/anonymous/phpsupcontent?contentID=%7B9B8E7A8A-2A00-4456-A7CC-8C2E74AA7EA5%7D","source":"af854a3a-2127-422b-91ae-364da2661108"}],"evaluatorComment":"Computer Associates (CA) Reference Link: Advisory\n\nhttps://support.ca.com/irj/portal/anonymous/phpsupcontent?contentID={9B8E7A8A-2A00-4456-A7CC-8C2E74AA7EA5}"}}]}