Lucene search

K
cve[email protected]CVE-2010-1355
HistoryOct 03, 2022 - 4:20 p.m.

CVE-2010-1355

2022-10-0316:20:58
CWE-79
web.nvd.nist.gov
18
cve-2010-1355
cross-site scripting
xss
tandberg video communication server
vcs
remote attackers
web script
html
reference id 66316

4.3 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:M/Au:N/C:N/I:P/A:N

5.9 Medium

AI Score

Confidence

High

0.001 Low

EPSS

Percentile

44.2%

Cross-site scripting (XSS) vulnerability on the TANDBERG Video Communication Server (VCS) before X5.0 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors, aka Reference ID 66316.

Affected configurations

NVD
Node
vsecuritytandberg_video_communication_serverRangex4.3.0
OR
vsecuritytandberg_video_communication_serverMatchx1.0.0
OR
vsecuritytandberg_video_communication_serverMatchx1.1.0
OR
vsecuritytandberg_video_communication_serverMatchx1.2.0
OR
vsecuritytandberg_video_communication_serverMatchx2.0.0
OR
vsecuritytandberg_video_communication_serverMatchx2.1.0
OR
vsecuritytandberg_video_communication_serverMatchx3.0.0
OR
vsecuritytandberg_video_communication_serverMatchx3.1.0
OR
vsecuritytandberg_video_communication_serverMatchx4.1.0
OR
vsecuritytandberg_video_communication_serverMatchx4.2.0
OR
vsecuritytandberg_video_communication_serverMatchx4.2.1

4.3 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:M/Au:N/C:N/I:P/A:N

5.9 Medium

AI Score

Confidence

High

0.001 Low

EPSS

Percentile

44.2%

Related for CVE-2010-1355