Lucene search

K
ubuntucveUbuntu.comUB:CVE-2012-2094
HistoryApr 17, 2012 - 12:00 a.m.

CVE-2012-2094

2012-04-1700:00:00
ubuntu.com
ubuntu.com
5

4.3 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:M/Au:N/C:N/I:P/A:N

0.003 Low

EPSS

Percentile

69.2%

Cross-site scripting (XSS) vulnerability in the refresh mechanism in the
log viewer in horizon/static/horizon/js/horizon.js in OpenStack Dashboard
(Horizon) folsom-1 and 2012.1 and earlier allows remote attackers to inject
arbitrary web script or HTML via the guest console.

Bugs

OSVersionArchitecturePackageVersionFilename
ubuntu12.04noarchhorizon< 2012.1-0ubuntu8.1UNKNOWN

4.3 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:M/Au:N/C:N/I:P/A:N

0.003 Low

EPSS

Percentile

69.2%