CVE-2007-0514

Опубликовано: 26 янв. 2007

Источник: nvd

CVSS2: 6.8

EPSS Низкий

Описание

Multiple cross-site scripting (XSS) vulnerabilities in multiple Hitachi Web Server, uCosminexus, and Cosminexus products before 20070124 allow remote attackers to inject arbitrary web script or HTML via (1) HTTP Expect headers or (2) image maps.

Ссылки

Уязвимые конфигурации

Конфигурация 1

Одно из

cpe:2.3:a:hitachi:cosminexus_application_server:*:*:*:*:*:*:*:*

cpe:2.3:a:hitachi:cosminexus_application_server:6:*:enterprise:*:*:*:*:*

cpe:2.3:a:hitachi:cosminexus_application_server_version_5:*:*:*:*:*:*:*:*

cpe:2.3:a:hitachi:cosminexus_developer_light_version_6:*:*:*:*:*:*:*:*

cpe:2.3:a:hitachi:cosminexus_developer_professional_version_6:*:*:*:*:*:*:*:*

cpe:2.3:a:hitachi:cosminexus_developer_standard_version_6:*:*:*:*:*:*:*:*

cpe:2.3:a:hitachi:cosminexus_developer_version_5:*:*:*:*:*:*:*:*

cpe:2.3:a:hitachi:cosminexus_server_-_enterprise_edition:*:*:*:*:*:*:*:*

cpe:2.3:a:hitachi:cosminexus_server_-_standard_edition:*:*:*:*:*:*:*:*

cpe:2.3:a:hitachi:cosminexus_server_-_standard_edition_version_4:*:*:*:*:*:*:*:*

cpe:2.3:a:hitachi:cosminexus_server_-_web_edition:*:*:*:*:*:*:*:*

cpe:2.3:a:hitachi:cosminexus_server_-_web_edition_version_4:*:*:*:*:*:*:*:*

cpe:2.3:a:hitachi:hitachi_web_server:*:*:*:*:*:*:*:*

cpe:2.3:a:hitachi:ucosminexus_application_server_enterprise:*:*:enterprise:*:*:*:*:*

cpe:2.3:a:hitachi:ucosminexus_application_server_smart_edition:*:*:*:*:*:*:*:*

cpe:2.3:a:hitachi:ucosminexus_application_server_standard:*:*:*:*:*:*:*:*

cpe:2.3:a:hitachi:ucosminexus_developer_light:*:*:*:*:*:*:*:*

cpe:2.3:a:hitachi:ucosminexus_developer_standard:*:*:*:*:*:*:*:*

cpe:2.3:a:hitachi:ucosminexus_service_architect:*:*:*:*:*:*:*:*

cpe:2.3:a:hitachi:ucosminexus_service_platform:*:*:*:*:*:*:*:*

EPSS

Процентиль: 78%

0.01194

Низкий

6.8 Medium

CVSS2

Дефекты

NVD-CWE-Other

Связанные уязвимости

GHSA-6v33-6r6q-36x7

github

больше 3 лет назад