CVE-2017-8953

Опубликовано: 15 фев. 2018

Источник: nvd

CVSS3: 5.4

CVSS2: 3.5

EPSS Низкий

Описание

A Remote Cross-Site Scripting (XSS) vulnerability in HPE LoadRunner v12.53 and earlier and HPE Performance Center version v12.53 and earlier was found.

Ссылки

http://www.securitytracker.com/id/1038867
Third Party Advisory
VDB Entry
http://www.securitytracker.com/id/1038868
Third Party Advisory
VDB Entry
https://support.hpe.com/hpsc/doc/public/display?docId=emr_na-hpesbgn03764en_us
Vendor Advisory
http://www.securitytracker.com/id/1038867
Third Party Advisory
VDB Entry
http://www.securitytracker.com/id/1038868
Third Party Advisory
VDB Entry
https://support.hpe.com/hpsc/doc/public/display?docId=emr_na-hpesbgn03764en_us
Vendor Advisory

Уязвимые конфигурации

Конфигурация 1

Одно из

cpe:2.3:a:hp:loadrunner:*:*:*:*:*:*:*:*

Версия до 12.53 (включая)

cpe:2.3:a:hp:performance_center:*:*:*:*:*:*:*:*

Версия до 12.53 (включая)

EPSS

Процентиль: 54%

0.00309

Низкий

5.4 Medium

CVSS3

3.5 Low

CVSS2

Дефекты

CWE-79

Связанные уязвимости

GHSA-cf7w-59c6-q29w