Описание
Apache Axis 1.x up to and including 1.4 is vulnerable to a cross-site scripting (XSS) attack in the default servlet/services.
Пакеты
| Пакет | Статус | Версия исправления | Релиз | Тип |
|---|---|---|---|---|
| axis | fixed | 1.4-28 | package | |
| axis | no-dsa | jessie | package |
Примечания
https://issues.apache.org/jira/browse/AXIS-2924
https://svn.apache.org/r1831943
EPSS
Процентиль: 85%
0.02343
Низкий
Связанные уязвимости
CVSS3: 6.1
ubuntu
больше 7 лет назад
Apache Axis 1.x up to and including 1.4 is vulnerable to a cross-site scripting (XSS) attack in the default servlet/services.
CVSS3: 5.4
redhat
больше 7 лет назад
Apache Axis 1.x up to and including 1.4 is vulnerable to a cross-site scripting (XSS) attack in the default servlet/services.
CVSS3: 6.1
nvd
больше 7 лет назад
Apache Axis 1.x up to and including 1.4 is vulnerable to a cross-site scripting (XSS) attack in the default servlet/services.
EPSS
Процентиль: 85%
0.02343
Низкий