[email protected]CVE-2010-3991

HistoryOct 28, 2010 - 8:00 p.m.

CVE-2010-3991

2010-10-2820:00:00

CWE-79

[email protected]

web.nvd.nist.gov

cve

2010

3991

xss

vulnerability

insight control

server migration

nvd

web

script

html

remote

attackers

5.8 Medium

AI Score

Confidence

High

4.3 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:M/Au:N/C:N/I:P/A:N

0.01 Low

EPSS

Percentile

83.5%

JSON

Cross-site scripting (XSS) vulnerability in HP Insight Control Server Migration before 6.2 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.

CPENameOperatorVersion
hp:insight_control_server_migrationhp insight control server migrationeq6.1
hp:insight_control_server_migrationhp insight control server migrationle6.1.2
hp:insight_control_server_migrationhp insight control server migrationeq6.0
hp:insight_control_server_migrationhp insight control server migrationeq6.0.2
hp:insight_control_server_migration6.0.1hp insight control server migration6.0.1eq*

CPE	Name	Operator	Version
hp:insight_control_server_migration	hp insight control server migration	eq	6.1
hp:insight_control_server_migration	hp insight control server migration	le	6.1.2
hp:insight_control_server_migration	hp insight control server migration	eq	6.0
hp:insight_control_server_migration	hp insight control server migration	eq	6.0.2
hp:insight_control_server_migration6.0.1	hp insight control server migration6.0.1	eq	*

References

marc.info/?l=bugtraq&m=128811321427551&w=2

www.securityfocus.com/bid/44433

www.securitytracker.com/id?1024643

5.8 Medium

AI Score

Confidence

High

4.3 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:M/Au:N/C:N/I:P/A:N

0.01 Low

EPSS

Percentile

83.5%

JSON

Related for CVE-2010-3991

prion1 cvelist1 securityvulns3