CVE-2011-0274

Опубликовано: 24 янв. 2011

Источник: nvd

CVSS2: 4.3

EPSS Низкий

Описание

Cross-site scripting (XSS) vulnerability in HP Business Availability Center (BAC) 7.x through 7.55 and 8.x through 8.05, and Business Service Management (BSM) through 9.01, allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.

Ссылки

http://marc.info/?l=bugtraq&m=129562482815203&w=2
Vendor Advisory
http://secunia.com/advisories/43014
Vendor Advisory
http://secunia.com/advisories/43018
Vendor Advisory
http://securitytracker.com/id?1024986
http://www.securityfocus.com/bid/45944
http://www.vupen.com/english/advisories/2011/0188
Vendor Advisory
https://exchange.xforce.ibmcloud.com/vulnerabilities/64846
http://marc.info/?l=bugtraq&m=129562482815203&w=2
Vendor Advisory
http://secunia.com/advisories/43014
Vendor Advisory
http://secunia.com/advisories/43018
Vendor Advisory
http://securitytracker.com/id?1024986
http://www.securityfocus.com/bid/45944
http://www.vupen.com/english/advisories/2011/0188
Vendor Advisory
https://exchange.xforce.ibmcloud.com/vulnerabilities/64846

Уязвимые конфигурации

Конфигурация 1

Одно из

cpe:2.3:a:hp:business_availability_center:7.0:*:*:*:*:*:*:*

cpe:2.3:a:hp:business_availability_center:7.55:*:*:*:*:*:*:*

cpe:2.3:a:hp:business_availability_center:8.0:*:*:*:*:*:*:*

cpe:2.3:a:hp:business_availability_center:8.05:*:*:*:*:*:*:*

cpe:2.3:a:hp:business_service_management:9.01:*:*:*:*:*:*:*

EPSS

Процентиль: 74%

0.00851

Низкий

4.3 Medium

CVSS2

Дефекты

CWE-79

Связанные уязвимости

GHSA-5j8x-37gw-wf45

github

больше 3 лет назад