Lucene search

Ubuntu.comUB:CVE-2012-2769

HistoryAug 15, 2012 - 12:00 a.m.

CVE-2012-2769

2012-08-1500:00:00

ubuntu.com

4.3 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:M/Au:N/C:N/I:P/A:N

0.002 Low

EPSS

Percentile

60.3%

JSON

Multiple cross-site scripting (XSS) vulnerabilities in the topic
administration page in the Extension::MobileUI extension before 1.02 for
Best Practical Solutions RT 3.8.x and in Best Practical Solutions RT before
4.0.6 allow remote attackers to inject arbitrary web script or HTML via
unspecified vectors.

References

lists.bestpractical.com/pipermail/rt-announce/2012-July/000208.html

secunia.com/advisories/50010

xforce.iss.net/xforce/xfdb/77211

launchpad.net/bugs/cve/CVE-2012-2769

nvd.nist.gov/vuln/detail/CVE-2012-2769

security-tracker.debian.org/tracker/CVE-2012-2769

www.cve.org/CVERecord?id=CVE-2012-2769

4.3 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:M/Au:N/C:N/I:P/A:N

0.002 Low

EPSS

Percentile

60.3%

JSON

Related for UB:CVE-2012-2769