Lucene search

HpCVE-2010-1969

HistoryJul 22, 2010 - 5:43 a.m.

CVE-2010-1969

2010-07-2205:43:05

CWE-79

web.nvd.nist.gov

cve-2010-1969

cross-site scripting

xss

vulnerability

hp virtual

connect enterprise manager

windows

nvd

CVSS2

4.3

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:M/Au:N/C:N/I:P/A:N

AI Score

5.9

Confidence

High

EPSS

0.009

Percentile

83.1%

JSON

Cross-site scripting (XSS) vulnerability in HP Virtual Connect Enterprise Manager for Windows before 6.1 allows remote attackers to inject arbitrary web script or HTML via unknown vectors.

Affected configurations

Nvd

Node

hpvirtual_connect_enterprise_managerMatch6.10

AND

microsoftwindows

VendorProductVersionCPE
hpvirtual_connect_enterprise_manager6.10cpe:2.3:a:hp:virtual_connect_enterprise_manager:6.10:*:*:*:*:*:*:*
microsoftwindows*cpe:2.3:o:microsoft:windows:*:*:*:*:*:*:*:*

Vendor	Product	Version	CPE
hp	virtual_connect_enterprise_manager	6.10	cpe:2.3:a:hp:virtual_connect_enterprise_manager:6.10:::::::*
microsoft	windows	*	cpe:2.3:o:microsoft:windows::::::::

References

secunia.com/advisories/40552

www.securitytracker.com/id?1024181

www.vupen.com/english/advisories/2010/1797

www11.itrc.hp.com/service/cki/docDisplay.do?docId=emr_na-c02283465&admit=109447626+1279054975923+28353475

CVSS2

4.3

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:M/Au:N/C:N/I:P/A:N

AI Score

5.9

Confidence

High

EPSS

0.009

Percentile

83.1%

JSON

Related for CVE-2010-1969