exploitDog

CVE-2017-1659

Опубликовано: 01 июл. 2020

Источник: nvd

CVSS3: 6.1

CVSS2: 4.3

EPSS Низкий

Описание

"HCL iNotes is susceptible to a Cross-Site Scripting (XSS) Vulnerability. An attacker could use this vulnerability to steal the victim's cookie-based authentication credentials."

Ссылки

https://support.hcltechsw.com/csm?id=kb_article&sysparm_article=KB0080512
Patch
Vendor Advisory
https://support.hcltechsw.com/csm?id=kb_article&sysparm_article=KB0080512
Patch
Vendor Advisory

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:ibm:inotes:*:*:*:*:*:*:*:*

Версия до 9.0.1.9 (включая)

EPSS

Процентиль: 52%

0.00289

Низкий

6.1 Medium

CVSS3

4.3 Medium

CVSS2

Дефекты

CWE-79

Связанные уязвимости

GHSA-7hq5-3x9w-x86w

github

больше 3 лет назад

"HCL iNotes is susceptible to a Cross-Site Scripting (XSS) Vulnerability. An attacker could use this vulnerability to steal the victim's cookie-based authentication credentials."

EPSS

Процентиль: 52%

0.00289

Низкий

6.1 Medium

CVSS3

4.3 Medium

CVSS2

Дефекты

CWE-79