Lucene search
HpCVE-2015-5444HistoryOct 18, 2015 - 10:59 a.m.
CVE-2015-5444
2015-10-1810:59:00
CWE-79
hp
web.nvd.nist.gov
24
cve-2015-5444
cross-site scripting
xss
hp smart profile server
sps dal
remote attackers
web script injection
html injection
CVSS2
4.3
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:M/Au:N/C:N/I:P/A:N
AI Score
5.9
Confidence
High
EPSS
0.002
Percentile
58.5%
Multiple cross-site scripting (XSS) vulnerabilities in HP Smart Profile Server Data Analytics Layer (SPS DAL) 2.3 before 2.3.5 allow remote attackers to inject arbitrary web script or HTML via unspecified vectors.
Affected configurations
Node
hpsmart_profile_server_data_analytics_layerMatch2.3
| Vendor | Product | Version | CPE |
|---|---|---|---|
| hp | smart_profile_server_data_analytics_layer | 2.3 | cpe:2.3:a:hp:smart_profile_server_data_analytics_layer:2.3:*:*:*:*:*:*:* |
Related
cvelist
cvelist
CVE-2015-5444
2015-10-18 10:00:00
prion
prion
Cross site scripting
2015-10-18 10:59:00
nvd
nvd
CVE-2015-5444
2015-10-18 10:59:00
CVSS2
4.3
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:M/Au:N/C:N/I:P/A:N
AI Score
5.9
Confidence
High
EPSS
0.002
Percentile
58.5%
Related for CVE-2015-5444