Lucene search

[email protected]CVE-2010-3012

HistorySep 17, 2010 - 8:00 p.m.

CVE-2010-3012

2010-09-1720:00:00

CWE-79

[email protected]

web.nvd.nist.gov

cve-2010-3012

cross-site scripting

xss

hp system management homepage

remote attackers

5.7 Medium

AI Score

Confidence

High

4.3 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:M/Au:N/C:N/I:P/A:N

0.012 Low

EPSS

Percentile

85.0%

JSON

Cross-site scripting (XSS) vulnerability in HP System Management Homepage (SMH) before 6.2 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors. NOTE: this issue was originally assigned CVE-2010-3010 due to a CNA error.

CPENameOperatorVersion
hp:system_management_homepagehp system management homepageeq2.1.9-178
hp:system_management_homepagehp system management homepageeq2.1.11.197
hp:system_management_homepagehp system management homepageeq2.1.2-127
hp:system_management_homepagehp system management homepageeq6.1.0.102
hp:system_management_homepagehp system management homepageeq2.1.10.186
hp:system_management_homepagehp system management homepageeq2.1.5.146
hp:system_management_homepagehp system management homepageeq2.1.11-197
hp:system_management_homepagehp system management homepageeq2.1.14.20
hp:system_management_homepagehp system management homepageeq2.1.2
hp:system_management_homepagehp system management homepageeq2.1.6

CPE	Name	Operator	Version
hp:system_management_homepage	hp system management homepage	eq	2.1.9-178
hp:system_management_homepage	hp system management homepage	eq	2.1.11.197
hp:system_management_homepage	hp system management homepage	eq	2.1.2-127
hp:system_management_homepage	hp system management homepage	eq	6.1.0.102
hp:system_management_homepage	hp system management homepage	eq	2.1.10.186
hp:system_management_homepage	hp system management homepage	eq	2.1.5.146
hp:system_management_homepage	hp system management homepage	eq	2.1.11-197
hp:system_management_homepage	hp system management homepage	eq	2.1.14.20
hp:system_management_homepage	hp system management homepage	eq	2.1.2
hp:system_management_homepage	hp system management homepage	eq	2.1.6

Rows per page:

1-10 of 601

References

secunia.com/advisories/41480

secunia.com/advisories/41490

www.itrc.hp.com/service/cki/docDisplay.do?docId=emr_na-c02512995

5.7 Medium

AI Score

Confidence

High

4.3 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:M/Au:N/C:N/I:P/A:N

0.012 Low

EPSS

Percentile

85.0%

JSON

Related for CVE-2010-3012

prion2 cve1 securityvulns3 openvas1 nessus1