Lucene search
HistoryJan 07, 2010 - 6:30 p.m.
CVE-2009-4590
CVSS2
4.3
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:M/Au:N/C:N/I:P/A:N
AI Score
5.6
Confidence
High
EPSS
0.003
Percentile
65.5%
Cross-site scripting (XSS) vulnerability in base_local_rules.php in Basic Analysis and Security Engine (BASE) before 1.4.4 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.
Affected configurations
Node
secureideasbaseRange≤1.4.3
ORsecureideasbaseMatch0.9.8
ORsecureideasbaseMatch0.9.9
ORsecureideasbaseMatch1.0
ORsecureideasbaseMatch1.2.4
ORsecureideasbaseMatch1.2.5
ORsecureideasbaseMatch1.2.6
ORsecureideasbaseMatch1.2.7
ORsecureideasbaseMatch1.3.5
ORsecureideasbaseMatch1.3.6
ORsecureideasbaseMatch1.3.8
ORsecureideasbaseMatch1.3.9
ORsecureideasbaseMatch1.4.0
ORsecureideasbaseMatch1.4.1
| Vendor | Product | Version | CPE |
|---|---|---|---|
| secureideas | base | * | cpe:2.3:a:secureideas:base:*:*:*:*:*:*:*:* |
| secureideas | base | 0.9.8 | cpe:2.3:a:secureideas:base:0.9.8:*:*:*:*:*:*:* |
| secureideas | base | 0.9.9 | cpe:2.3:a:secureideas:base:0.9.9:*:*:*:*:*:*:* |
| secureideas | base | 1.0 | cpe:2.3:a:secureideas:base:1.0:*:*:*:*:*:*:* |
| secureideas | base | 1.2.4 | cpe:2.3:a:secureideas:base:1.2.4:*:*:*:*:*:*:* |
| secureideas | base | 1.2.5 | cpe:2.3:a:secureideas:base:1.2.5:*:*:*:*:*:*:* |
| secureideas | base | 1.2.6 | cpe:2.3:a:secureideas:base:1.2.6:*:*:*:*:*:*:* |
| secureideas | base | 1.2.7 | cpe:2.3:a:secureideas:base:1.2.7:*:*:*:*:*:*:* |
| secureideas | base | 1.3.5 | cpe:2.3:a:secureideas:base:1.3.5:*:*:*:*:*:*:* |
| secureideas | base | 1.3.6 | cpe:2.3:a:secureideas:base:1.3.6:*:*:*:*:*:*:* |
Related
ubuntucve
ubuntucve
CVE-2009-4590
2010-01-07 00:00:00
prion
prion
Cross site scripting
2010-01-07 18:30:00
cvelist
cvelist
CVE-2009-4590
2010-01-07 18:13:00
cve
cve
CVE-2009-4590
2010-01-07 18:30:00
openvas
openvas
Basic Analysis and Security Engine Multiple Input Validation Vulnerabilities
2009-10-29 00:00:00
Basic Analysis and Security Engine Multiple Input Validation Vulnerabilities
2009-10-29 00:00:00
CVSS2
4.3
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:M/Au:N/C:N/I:P/A:N
AI Score
5.6
Confidence
High
EPSS
0.003
Percentile
65.5%
Related for NVD:CVE-2009-4590