Lucene search

[email protected]CVE-2003-0801

HistoryOct 03, 2022 - 4:15 p.m.

CVE-2003-0801

2022-10-0316:15:45

CWE-79

[email protected]

web.nvd.nist.gov

cve-2003-0801

cross-site scripting

xss

nokia electronic documentation

ned 5.0

remote attackers

arbitrary web script

url

6.4 Medium

AI Score

Confidence

High

4.3 Medium

CVSS2

Access Vector

Access Complexity

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:M/Au:N/C:N/I:P/A:N

0.001 Low

EPSS

Percentile

45.9%

JSON

Cross-site scripting (XSS) vulnerability in Nokia Electronic Documentation (NED) 5.0 allows remote attackers to execute arbitrary web script and steal cookies via a URL to the docs/ directory that contains the script.

Affected configurations

NVD

Node

nokiaelectronic_documentationMatch5.0

CPENameOperatorVersion
nokia:electronic_documentationnokia electronic documentationeq5.0

CPE	Name	Operator	Version
nokia:electronic_documentation	nokia electronic documentation	eq	5.0

References

www.atstake.com/research/advisories/2003/a091503-1.txt

6.4 Medium

AI Score

Confidence

High

4.3 Medium

CVSS2

Access Vector

Access Complexity

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:M/Au:N/C:N/I:P/A:N

0.001 Low

EPSS

Percentile

45.9%

JSON

Related for CVE-2003-0801

cvelist1 nvd1