Описание
Cross-site scripting (XSS) vulnerability in core/handleTw.php on the Siemens Enterprise OpenScape Branch appliance and OpenScape Session Border Controller (SBC) before 2 R0.32.0, and 7 before 7 R1.7.0, allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.
Ссылки
Уязвимые конфигурации
Конфигурация 1
Одно из
cpe:2.3:a:siemens:openscape_session_border_controller:1r4.17.0:*:*:*:*:*:*:*
cpe:2.3:a:siemens:openscape_session_border_controller:7r.0:*:*:*:*:*:*:*
cpe:2.3:h:siemens:enterprise_openscape_branch:-:*:*:*:*:*:*:*
EPSS
Процентиль: 45%
0.00225
Низкий
4.3 Medium
CVSS2
Дефекты
CWE-79
Связанные уязвимости
github
больше 3 лет назад
Cross-site scripting (XSS) vulnerability in core/handleTw.php on the Siemens Enterprise OpenScape Branch appliance and OpenScape Session Border Controller (SBC) before 2 R0.32.0, and 7 before 7 R1.7.0, allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.
EPSS
Процентиль: 45%
0.00225
Низкий
4.3 Medium
CVSS2
Дефекты
CWE-79