Lucene search

[email protected]NVD:CVE-2014-2644

HistoryOct 06, 2014 - 1:55 a.m.

CVE-2014-2644

2014-10-0601:55:07

CWE-79

[email protected]

web.nvd.nist.gov

4.3 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:M/Au:N/C:N/I:P/A:N

5.5 Medium

AI Score

Confidence

High

0.054 Low

EPSS

Percentile

93.2%

JSON

Cross-site scripting (XSS) vulnerability in HP Systems Insight Manager (SIM) before 7.4 allows remote attackers to inject arbitrary web script or HTML via unknown vectors.

Affected configurations

NVD

Node

hpsystems_insight_managerRange≤7.3

hpsystems_insight_managerMatch7.0

hpsystems_insight_managerMatch7.1

hpsystems_insight_managerMatch7.2

References

www.securityfocus.com/bid/70223

www.securitytracker.com/id/1030970

h20564.www2.hp.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c04468121

4.3 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:M/Au:N/C:N/I:P/A:N

5.5 Medium

AI Score

Confidence

High

0.054 Low

EPSS

Percentile

93.2%

JSON

Related for NVD:CVE-2014-2644

cve2 prion2 cvelist1 nessus1 nvd1 securityvulns2