Lucene search
HistoryFeb 03, 2015 - 4:59 p.m.
CVE-2014-5360
cve-2014-5360
cross-site scripting
xss
landesk management suite
vulnerability
nvd
amtversion parameter
remote attack
5.7 Medium
AI Score
Confidence
High
4.3 Medium
CVSS2
Access Vector
Access Complexity
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:M/Au:N/C:N/I:P/A:N
0.003 Low
EPSS
Percentile
65.9%
Cross-site scripting (XSS) vulnerability in the admin interface in LANDESK Management Suite before 9.6 SP1 allows remote attackers to inject arbitrary web script or HTML via the AMTVersion parameter to remote/serverlist_grouptree.aspx.
Affected configurations
Node
landesklandesk_management_suiteRange≤9.6
| CPE | Name | Operator | Version |
|---|---|---|---|
| landesk:landesk_management_suite | landesk landesk management suite | le | 9.6 |
References
Related
prion
prion
Cross site scripting
2015-02-03 16:59:00
cvelist
cvelist
CVE-2014-5360
2015-02-03 16:00:00
nvd
nvd
CVE-2014-5360
2015-02-03 16:59:00
securityvulns
securityvulns
zdt
zdt
Landesk Management Suite 9.5 Cross Site Scripting Vulnerability
2015-02-04 00:00:00
checkpoint_advisories
checkpoint_advisories
LANDesk Management Suite AMTVersion Cross-Site Scripting (CVE-2014-5360)
2015-06-21 00:00:00
packetstorm
packetstorm
Landesk Management Suite 9.5 Cross Site Scripting
2015-02-02 00:00:00
5.7 Medium
AI Score
Confidence
High
4.3 Medium
CVSS2
Access Vector
Access Complexity
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:M/Au:N/C:N/I:P/A:N
0.003 Low
EPSS
Percentile
65.9%
Related for CVE-2014-5360