Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
cveHpCVE-2010-3010
HistorySep 15, 2010 - 8:00 p.m.

CVE-2010-3010

2010-09-1520:00:01
CWE-79
hp
web.nvd.nist.gov
29
hp
3com
officeconnect
gigabit
vpn
firewall
xss
vulnerability
cve-2010-3010
nvd

CVSS2

4.3

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:M/Au:N/C:N/I:P/A:N

AI Score

5.2

Confidence

High

EPSS

0.01

Percentile

84.2%

JSON

Cross-site scripting (XSS) vulnerability on the HP 3Com OfficeConnect Gigabit VPN Firewall 3CREVF100-73 with firmware before 1.0.13 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors. NOTE: a separate XSS issue for HP System Management Homepage (SMH) was originally assigned CVE-2010-3010 due to a CNA error, but CVE-2010-3012 is the appropriate identifier for the SMH issue.

Affected configurations

Nvd
Node
hp3com_officeconnect_gigabit_vpn_firewall_softwareRange1.0.12
OR
hp3com_officeconnect_gigabit_vpn_firewall_softwareMatch1.0.8
AND
hp3crevf100-73
VendorProductVersionCPE
hp3com_officeconnect_gigabit_vpn_firewall_software*cpe:2.3:o:hp:3com_officeconnect_gigabit_vpn_firewall_software:*:*:*:*:*:*:*:*
hp3com_officeconnect_gigabit_vpn_firewall_software1.0.8cpe:2.3:o:hp:3com_officeconnect_gigabit_vpn_firewall_software:1.0.8:*:*:*:*:*:*:*
hp3crevf100-73*cpe:2.3:h:hp:3crevf100-73:*:*:*:*:*:*:*:*

Related

prion 2
cvelist 2
nvd 2
cve 1
securityvulns 3
openvas 1
nessus 1
prion
prion
Cross site scripting
2010-09-15 20:00:00
Cross site scripting
2010-09-17 20:00:00
cvelist
cvelist
CVE-2010-3010
2010-09-15 19:00:00
CVE-2010-3012
2010-09-17 19:00:00
nvd
nvd
CVE-2010-3012
2010-09-17 20:00:01
CVE-2010-3010
2010-09-15 20:00:01
cve
cve
CVE-2010-3012
2010-09-17 20:00:01
securityvulns
securityvulns
3Com OfficeConnect Gigabit VPN Firewall crossite scripting
2010-09-17 00:00:00
[security bulletin] HPSBGN02577 SSRT100224 rev.2 - 3Com OfficeConnect Gigabit VPN Firewall (3CREVF100-73), Remote Cross Site Scripting (XSS)
2010-09-17 00:00:00
[security bulletin] HPSBMA02568 SSRT100219 rev.1 - HP System Management Homepage (SMH) for Linux and Windows, Remote Cross Site Scripting (XSS), HTTP Response Splitting, and Other Vulnerabilities
2010-09-17 00:00:00
openvas
openvas
HP/HPE System Management Homepage (SMH) Multiple Vulnerabilities (HPSBMA02566, HPSBMA02568)
2010-09-20 00:00:00
nessus
nessus
HP System Management Homepage < 6.2 Multiple Vulnerabilities
2010-09-17 00:00:00

CVSS2

4.3

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:M/Au:N/C:N/I:P/A:N

AI Score

5.2

Confidence

High

EPSS

0.01

Percentile

84.2%

JSON
Related for CVE-2010-3010
prion2cvelist2nvd2cve1securityvulns3openvas1nessus1