Lucene search
HistoryNov 14, 2008 - 7:20 p.m.
CVE-2008-5095
4.3 Medium
CVSS2
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:M/Au:N/C:N/I:P/A:N
5.6 Medium
AI Score
Confidence
High
0.002 Low
EPSS
Percentile
53.9%
Cross-site scripting (XSS) vulnerability in the Novell User Application 3.0.1, 3.5.0, and 3.5.1; and Identity Manager Roles Based Provisioning Module 3.6.0 and 3.6.1 allows remote attackers to inject arbitrary web script or HTML via unknown vectors.
Affected configurations
Node
novellidentity_manager_roles_based_provisioning_moduleMatch3.6.0
ORnovellidentity_manager_roles_based_provisioning_moduleMatch3.6.1
ORnovelluser_applicationMatch3.0.1
ORnovelluser_applicationMatch3.5.0
ORnovelluser_applicationMatch3.5.1
Related
cve
cve
CVE-2008-5095
2008-11-14 19:20:54
cvelist
cvelist
CVE-2008-5095
2008-11-14 19:00:00
prion
prion
Cross site scripting
2008-11-14 19:20:00
openvas
openvas
Novell eDirectory Multiple Vulnerabilities (Windows)
2008-09-02 00:00:00
Novell eDirectory Multiple Vulnerabilities - Linux
2008-09-02 00:00:00
Novell eDirectory Multiple Vulnerabilities - Windows
2008-09-02 00:00:00
nessus
nessus
Novell eDirectory < 8.8 SP3 Multiple Vulnerabilities (OF, XSS, MC)
2008-09-16 00:00:00
4.3 Medium
CVSS2
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:M/Au:N/C:N/I:P/A:N
5.6 Medium
AI Score
Confidence
High
0.002 Low
EPSS
Percentile
53.9%
Related for NVD:CVE-2008-5095