Lucene search

K

PRIOn knowledge basePRION:CVE-2010-2544

HistoryAug 23, 2010 - 10:00 p.m.

Cross site scripting

2010-08-2322:00:00

PRIOn knowledge base

www.prio-n.com

3

6 Medium

AI Score

Confidence

High

4.3 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:M/Au:N/C:N/I:P/A:N

0.023 Low

EPSS

Percentile

89.4%

Cross-site scripting (XSS) vulnerability in utilities.php in Cacti before 0.8.7g, as used in Red Hat High Performance Computing (HPC) Solution and other products, allows remote attackers to inject arbitrary web script or HTML via the filter parameter.

CPENameOperatorVersion
cactieq0.5
cactieq0.8.6107
cactieq0.8.6100
cactieq0.6.3
cactieq<= 0.8.7f
cactieq0.8.7
cactieq0.8.597
cactieq0.8.3
cactieq0.6.8
cactieq0.8.2

Rows per page:

1-10 of 381

References

cacti.net/release_notes_0_8_7g.php

secunia.com/advisories/41041

svn.cacti.net/viewvc/cacti/branches/0.8.7/utilities.php?r1=6025&r2=6024&pathrev=6025

svn.cacti.net/viewvc?view=rev&revision=6025

www.mandriva.com/security/advisories?name=MDVSA-2010:160

www.securityfocus.com/bid/42575

www.vupen.com/english/advisories/2010/2132

bugzilla.redhat.com/show_bug.cgi?id=459105

exchange.xforce.ibmcloud.com/vulnerabilities/61226

marc.info/?l=oss-security&m=127978954522586&w=2

marc.info/?l=oss-security&m=128017203704299&w=2

rhn.redhat.com/errata/RHSA-2010-0635.html

6 Medium

AI Score

Confidence

High

4.3 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:M/Au:N/C:N/I:P/A:N

0.023 Low

EPSS

Percentile

89.4%

Related for PRION:CVE-2010-2544

checkpoint_advisories1 debiancve1 veracode1 ubuntucve1 cve1 nessus2 openvas5 gentoo1