Lucene search

K
cve[email protected]CVE-2006-3289
HistoryJun 28, 2006 - 11:05 p.m.

CVE-2006-3289

2006-06-2823:05:00
NVD-CWE-Other
web.nvd.nist.gov
19
cve-2006-3289
cross-site scripting
xss
cisco
wireless control system
wcs
linux
windows
nvd
security vulnerability

5.9 Medium

AI Score

Confidence

High

2.6 Low

CVSS2

Access Vector

NETWORK

Access Complexity

HIGH

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:H/Au:N/C:N/I:P/A:N

0.004 Low

EPSS

Percentile

74.1%

Cross-site scripting (XSS) vulnerability in the login page of the HTTP interface for the Cisco Wireless Control System (WCS) for Linux and Windows before 3.2(51) allows remote attackers to inject arbitrary web script or HTML via unspecified vectors involving a β€œmalicious URL”.

5.9 Medium

AI Score

Confidence

High

2.6 Low

CVSS2

Access Vector

NETWORK

Access Complexity

HIGH

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:H/Au:N/C:N/I:P/A:N

0.004 Low

EPSS

Percentile

74.1%

Related for CVE-2006-3289