{"resultsPerPage":1,"startIndex":0,"totalResults":1,"format":"NVD_CVE","version":"2.0","timestamp":"2026-04-25T13:41:11.210","vulnerabilities":[{"cve":{"id":"CVE-2014-6093","sourceIdentifier":"psirt@us.ibm.com","published":"2014-11-26T02:59:00.090","lastModified":"2025-04-12T10:46:40.837","vulnStatus":"Deferred","cveTags":[],"descriptions":[{"lang":"en","value":"Cross-site scripting (XSS) vulnerability in IBM WebSphere Portal 7.0.x before 7.0.0.2 CF29, 8.0.x through 8.0.0.1 CF14, and 8.5.x before 8.5.0 CF02 allows remote authenticated users to inject arbitrary web script or HTML via a crafted URL."},{"lang":"es","value":"Vulnerabilidad de XSS en IBM WebSphere Portal 7.0.x anterior a 7.0.0.2 CF29, 8.0.x hasta 8.0.0.1 CF14, y 8.5.x anterior a 8.5.0 CF02 permite a usuarios remotos autenticados inyectar secuencias de comandos web o HTML arbitrarios a través de una URL manipulada."}],"metrics":{"cvssMetricV2":[{"source":"nvd@nist.gov","type":"Primary","cvssData":{"version":"2.0","vectorString":"AV:N/AC:M/Au:S/C:N/I:P/A:N","baseScore":3.5,"accessVector":"NETWORK","accessComplexity":"MEDIUM","authentication":"SINGLE","confidentialityImpact":"NONE","integrityImpact":"PARTIAL","availabilityImpact":"NONE"},"baseSeverity":"LOW","exploitabilityScore":6.8,"impactScore":2.9,"acInsufInfo":false,"obtainAllPrivilege":false,"obtainUserPrivilege":false,"obtainOtherPrivilege":false,"userInteractionRequired":true}]},"weaknesses":[{"source":"nvd@nist.gov","type":"Primary","description":[{"lang":"en","value":"CWE-79"}]}],"configurations":[{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:ibm:websphere_portal:*:cf28:*:*:*:*:*:*","versionEndIncluding":"7.0.0.2","matchCriteriaId":"439FB43E-4A6A-4337-959A-2EFDDF5E9BA9"},{"vulnerable":true,"criteria":"cpe:2.3:a:ibm:websphere_portal:*:14:*:*:*:*:*:*","versionEndIncluding":"8.0.0.1","matchCriteriaId":"DC925A0E-E02E-47DB-A2E6-C2A1ACD84027"},{"vulnerable":true,"criteria":"cpe:2.3:a:ibm:websphere_portal:*:cf01:*:*:*:*:*:*","versionEndIncluding":"8.5.0.0","matchCriteriaId":"31DF431F-3D15-4701-975A-971C215F42EF"},{"vulnerable":true,"criteria":"cpe:2.3:a:ibm:websphere_portal:7.0.0.0:*:*:*:*:*:*:*","matchCriteriaId":"D303B0B9-CDAB-409B-AE44-512D4791C36F"},{"vulnerable":true,"criteria":"cpe:2.3:a:ibm:websphere_portal:7.0.0.1:*:*:*:*:*:*:*","matchCriteriaId":"C6ECEE98-B276-4ED6-AA5A-109EA57E9925"},{"vulnerable":true,"criteria":"cpe:2.3:a:ibm:websphere_portal:8.0.0.0:*:*:*:*:*:*:*","matchCriteriaId":"C90EF7A4-8181-42C3-BB95-395D0DD94C14"}]}]}],"references":[{"url":"http://secunia.com/advisories/59752","source":"psirt@us.ibm.com"},{"url":"http://secunia.com/advisories/60912","source":"psirt@us.ibm.com"},{"url":"http://www-01.ibm.com/support/docview.wss?uid=swg1PI24678","source":"psirt@us.ibm.com"},{"url":"http://www-01.ibm.com/support/docview.wss?uid=swg21689849","source":"psirt@us.ibm.com","tags":["Vendor Advisory"]},{"url":"http://www.securitytracker.com/id/1031359","source":"psirt@us.ibm.com"},{"url":"https://exchange.xforce.ibmcloud.com/vulnerabilities/95921","source":"psirt@us.ibm.com"},{"url":"http://secunia.com/advisories/59752","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"http://secunia.com/advisories/60912","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"http://www-01.ibm.com/support/docview.wss?uid=swg1PI24678","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"http://www-01.ibm.com/support/docview.wss?uid=swg21689849","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Vendor Advisory"]},{"url":"http://www.securitytracker.com/id/1031359","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"https://exchange.xforce.ibmcloud.com/vulnerabilities/95921","source":"af854a3a-2127-422b-91ae-364da2661108"}]}}]}