Cross site scripting

2013-08-1601:55:00

PRIOn knowledge base

www.prio-n.com

6 Medium

AI Score

Confidence

High

0.001 Low

EPSS

Percentile

26.6%

JSON

Cross-site scripting (XSS) vulnerability in adv_sw.php in the Advanced Management Module (AMM) with firmware BBET before BBET64G and BPET before BPET64G for IBM BladeCenter systems allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.

CPENameOperatorVersion
advanced_management_modulele2.48
advanced_management_modulele3.54
advanced_management_moduleeq1.00
advanced_management_moduleeq1.01
advanced_management_moduleeq1.20 f
advanced_management_moduleeq1.20
advanced_management_moduleeq1.25 i
advanced_management_moduleeq1.25 e
advanced_management_moduleeq1.25
advanced_management_moduleeq1.26 i

Name	Operator	Version
advanced_management_module	le	2.48
advanced_management_module	le	3.54
advanced_management_module	eq	1.00
advanced_management_module	eq	1.01
advanced_management_module	eq	1.20 f
advanced_management_module	eq	1.20
advanced_management_module	eq	1.25 i
advanced_management_module	eq	1.25 e
advanced_management_module	eq	1.25
advanced_management_module	eq	1.26 i