Lucene search

K
cve[email protected]CVE-2010-1355
HistoryOct 03, 2022 - 4:20 p.m.

CVE-2010-1355

2022-10-0316:20:58
CWE-79
web.nvd.nist.gov
18
cve-2010-1355
cross-site scripting
xss
tandberg video communication server
vcs
remote attackers
web script
html
reference id 66316

5.9 Medium

AI Score

Confidence

High

4.3 Medium

CVSS2

Access Vector

Access Complexity

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:M/Au:N/C:N/I:P/A:N

0.001 Low

EPSS

Percentile

44.1%

Cross-site scripting (XSS) vulnerability on the TANDBERG Video Communication Server (VCS) before X5.0 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors, aka Reference ID 66316.

Affected configurations

NVD
Node
vsecuritytandberg_video_communication_serverRangex4.3.0
OR
vsecuritytandberg_video_communication_serverMatchx1.0.0
OR
vsecuritytandberg_video_communication_serverMatchx1.1.0
OR
vsecuritytandberg_video_communication_serverMatchx1.2.0
OR
vsecuritytandberg_video_communication_serverMatchx2.0.0
OR
vsecuritytandberg_video_communication_serverMatchx2.1.0
OR
vsecuritytandberg_video_communication_serverMatchx3.0.0
OR
vsecuritytandberg_video_communication_serverMatchx3.1.0
OR
vsecuritytandberg_video_communication_serverMatchx4.1.0
OR
vsecuritytandberg_video_communication_serverMatchx4.2.0
OR
vsecuritytandberg_video_communication_serverMatchx4.2.1

5.9 Medium

AI Score

Confidence

High

4.3 Medium

CVSS2

Access Vector

Access Complexity

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:M/Au:N/C:N/I:P/A:N

0.001 Low

EPSS

Percentile

44.1%

Related for CVE-2010-1355