CVE-2007-4350
4.3 Medium
CVSS2
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:M/Au:N/C:N/I:P/A:N
5.6 Medium
AI Score
Confidence
High
0.003 Low
EPSS
Percentile
66.2%
Cross-site scripting (XSS) vulnerability in the management interface in HP SiteScope 9.0 build 911 allows remote attackers to inject arbitrary web script or HTML via an SNMP trap message.
Affected configurations
References
secunia.com/advisories/27126
secunia.com/secunia_research/2007-84/
securityreason.com/securityalert/4447
securitytracker.com/id?1021068
www.securityfocus.com/archive/1/497548/100/0/threaded
www.securityfocus.com/bid/31816
www.vupen.com/english/advisories/2008/2854
exchange.xforce.ibmcloud.com/vulnerabilities/45958
Related
4.3 Medium
CVSS2
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:M/Au:N/C:N/I:P/A:N
5.6 Medium
AI Score
Confidence
High
0.003 Low
EPSS
Percentile
66.2%