Lucene search
PRIOn knowledge basePRION:CVE-2015-1629HistoryMar 11, 2015 - 10:59 a.m.
Cross site scripting
2015-03-1110:59:00
PRIOn knowledge base
www.prio-n.com
4
5.5 Medium
AI Score
Confidence
High
4.3 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:M/Au:N/C:N/I:P/A:N
0.033 Low
EPSS
Percentile
91.0%
Cross-site scripting (XSS) vulnerability in Outlook Web App (OWA) in Microsoft Exchange Server 2013 SP1 and Cumulative Update 7 allows remote attackers to inject arbitrary web script or HTML via a crafted URL, aka “ExchangeDLP Cross Site Scripting Vulnerability.”
| CPE | Name | Operator | Version |
|---|---|---|---|
| exchange_server | eq | 2013 cumulativeupdate7 | |
| exchange_server | eq | 2013 sp1 |
Related
cvelist
cvelist
CVE-2015-1629
2015-03-11 10:00:00
checkpoint_advisories
checkpoint_advisories
Microsoft ExchangeDLP Cross Site Scripting (MS15-026; CVE-2015-1629)
2015-04-26 00:00:00
symantec
symantec
Microsoft Exchange Server CVE-2015-1629 Cross Site Scripting Vulnerability
2015-03-10 00:00:00
cve
cve
CVE-2015-1629
2015-03-11 10:59:00
securityvulns
securityvulns
Microsoft Exchange crossite scripting
2015-04-16 00:00:00
nessus
nessus
kaspersky
kaspersky
KLA10591 Code injection in Microsoft Exchange Server
2015-03-10 00:00:00
openvas
openvas
Microsoft Exchange Server Privilege Escalation Vulnerability (3040856)
2015-03-11 00:00:00
5.5 Medium
AI Score
Confidence
High
4.3 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:M/Au:N/C:N/I:P/A:N
0.033 Low
EPSS
Percentile
91.0%
Related for PRION:CVE-2015-1629