CVE-2014-3898

Опубликовано: 14 авг. 2014

Источник: nvd

CVSS2: 4.3

EPSS Низкий

Описание

Cross-site scripting (XSS) vulnerability in Fujitsu ServerView Operations Manager 5.00.09 through 6.30.05 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.

Ссылки

http://jp.fujitsu.com/platform/server/primequest/products/2000/catalog/manual/support/note_140729_svom.html
http://jp.fujitsu.com/platform/server/primergy/note/page20.html
http://jvn.jp/en/jp/JVN22534185/index.html
Vendor Advisory
http://jvndb.jvn.jp/jvndb/JVNDB-2014-000091
Vendor Advisory
http://secunia.com/advisories/59210
http://jp.fujitsu.com/platform/server/primequest/products/2000/catalog/manual/support/note_140729_svom.html
http://jp.fujitsu.com/platform/server/primergy/note/page20.html
http://jvn.jp/en/jp/JVN22534185/index.html
Vendor Advisory
http://jvndb.jvn.jp/jvndb/JVNDB-2014-000091
Vendor Advisory
http://secunia.com/advisories/59210

Уязвимые конфигурации

Конфигурация 1

Одно из

cpe:2.3:a:fujitsu:serverview_operations_manager:5.00.09:*:*:*:*:*:*:*

cpe:2.3:a:fujitsu:serverview_operations_manager:6.30.05:*:*:*:*:*:*:*

EPSS

Процентиль: 60%

0.00396

Низкий

4.3 Medium

CVSS2

Дефекты

CWE-79

Связанные уязвимости

GHSA-mp3h-ccp9-h44v

github

больше 3 лет назад