exploitDog

CVE-2011-4193

Опубликовано: 16 апр. 2014

Источник: nvd

CVSS2: 4.3

EPSS Низкий

Описание

Cross-site scripting (XSS) vulnerability in the overlay files tab in SUSE Studio Onsite 1.2 before 1.2.1 and SUSE Studio Extension for System z 1.2 before 1.2.1 allows remote attackers to inject arbitrary web script or HTML via a crafted application, related to cloning.

Ссылки

http://lists.opensuse.org/opensuse-security-announce/2011-12/msg00015.html
Vendor Advisory
http://lists.opensuse.org/opensuse-security-announce/2011-12/msg00015.html
Vendor Advisory

Уязвимые конфигурации

Конфигурация 1

Одно из

cpe:2.3:a:suse:studio_extension_for_system_z:1.2:*:*:*:*:*:*:*

cpe:2.3:a:suse:studio_onsite:1.2:*:*:*:*:*:*:*

EPSS

Процентиль: 49%

0.00263

Низкий

4.3 Medium

CVSS2

Дефекты

CWE-79

Связанные уязвимости

GHSA-c24j-m6gg-9jxh

github

больше 3 лет назад

Cross-site scripting (XSS) vulnerability in the overlay files tab in SUSE Studio Onsite 1.2 before 1.2.1 and SUSE Studio Extension for System z 1.2 before 1.2.1 allows remote attackers to inject arbitrary web script or HTML via a crafted application, related to cloning.

EPSS

Процентиль: 49%

0.00263

Низкий

4.3 Medium

CVSS2

Дефекты

CWE-79