exploitDog

CVE-2014-2647

Опубликовано: 19 окт. 2014

Источник: nvd

CVSS2: 4.3

EPSS Низкий

Описание

Cross-site scripting (XSS) vulnerability in HP Operations Agent in HP Operations Manager (formerly OpenView Communications Broker) before 11.14 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.

Ссылки

http://www.exploit-db.com/exploits/35076
Exploit
https://h20564.www2.hp.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c04472444
Vendor Advisory
http://www.exploit-db.com/exploits/35076
Exploit
https://h20564.www2.hp.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c04472444
Vendor Advisory

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:hp:operations_agent:*:*:*:*:*:*:*:*

Версия до 11.13 (включая)

EPSS

Процентиль: 83%

0.02052

Низкий

4.3 Medium

CVSS2

Дефекты

CWE-79

Связанные уязвимости

GHSA-r6fg-h6hf-c24f

github

больше 3 лет назад

Cross-site scripting (XSS) vulnerability in HP Operations Agent in HP Operations Manager (formerly OpenView Communications Broker) before 11.14 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.

EPSS

Процентиль: 83%

0.02052

Низкий

4.3 Medium

CVSS2

Дефекты

CWE-79