Описание
IBM OPENBMC OP910 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a trusted session. IBM X-Force ID: 212049.
Ссылки
- VDB EntryVendor Advisory
- Vendor Advisory
- VDB EntryVendor Advisory
- Vendor Advisory
Уязвимые конфигурации
Конфигурация 1
Одновременно
cpe:2.3:o:ibm:power_system_ac922_\(8335-gtg\)_firmware:op910:*:*:*:*:*:*:*
cpe:2.3:h:ibm:power_system_ac922_\(8335-gtg\):-:*:*:*:*:*:*:*
Конфигурация 2
Одновременно
cpe:2.3:o:ibm:power_system_ac922_\(8335-gtc\)_firmware:op910:*:*:*:*:*:*:*
cpe:2.3:h:ibm:power_system_ac922_\(8335-gtc\):-:*:*:*:*:*:*:*
Конфигурация 3
Одновременно
cpe:2.3:o:ibm:power_system_ac922_\(8335-gtw\)_firmware:op910:*:*:*:*:*:*:*
cpe:2.3:h:ibm:power_system_ac922_\(8335-gtw\):-:*:*:*:*:*:*:*
EPSS
Процентиль: 33%
0.00131
Низкий
6.1 Medium
CVSS3
6.1 Medium
CVSS3
4.3 Medium
CVSS2
Дефекты
CWE-79
Связанные уязвимости
github
около 4 лет назад
IBM OPENBMC OP910 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a trusted session. IBM X-Force ID: 212049.
EPSS
Процентиль: 33%
0.00131
Низкий
6.1 Medium
CVSS3
6.1 Medium
CVSS3
4.3 Medium
CVSS2
Дефекты
CWE-79