Lucene search

[email protected]CVE-2008-2743

HistoryJun 17, 2008 - 3:41 p.m.

CVE-2008-2743

2008-06-1715:41:00

CWE-79

[email protected]

web.nvd.nist.gov

cve-2008-2743

xss vulnerability

xerox 4110

xerox 4590

xerox 4595

copier/printers

nvd

4.3 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:M/Au:N/C:N/I:P/A:N

5.7 Medium

AI Score

Confidence

High

0.003 Low

EPSS

Percentile

65.1%

JSON

Cross-site scripting (XSS) vulnerability in the embedded web server in Xerox 4110, 4590, and 4595 Copier/Printers allows remote attackers to inject arbitrary web script or HTML via unknown attack vectors.

Affected configurations

NVD

Node

xeroxxerox_4110

xeroxxerox_4590

xeroxxerox_4595

CPENameOperatorVersion
xerox:xerox_4110xerox xerox 4110eq*
xerox:xerox_4590xerox xerox 4590eq*
xerox:xerox_4595xerox xerox 4595eq*

CPE	Name	Operator	Version
xerox:xerox_4110	xerox xerox 4110	eq	*
xerox:xerox_4590	xerox xerox 4590	eq	*
xerox:xerox_4595	xerox xerox 4595	eq	*

References

secunia.com/advisories/30639

www.securityfocus.com/bid/29690

www.securitytracker.com/id?1020282

www.vupen.com/english/advisories/2008/1829/references

www.xerox.com/downloads/usa/en/c/cert_XRX08_007.pdf

exchange.xforce.ibmcloud.com/vulnerabilities/43058

4.3 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:M/Au:N/C:N/I:P/A:N

5.7 Medium

AI Score

Confidence

High

0.003 Low

EPSS

Percentile

65.1%

JSON

Related for CVE-2008-2743

prion1 cvelist1 nvd1