Lucene search
HistoryMay 01, 2014 - 5:29 p.m.
CVE-2014-0941
ibm
netcool
omnibus
xss
vulnerability
web gui
cve-2014-0941
3.5 Low
CVSS2
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
SINGLE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:M/Au:S/C:N/I:P/A:N
5.2 Medium
AI Score
Confidence
High
0.001 Low
EPSS
Percentile
27.6%
Cross-site scripting (XSS) vulnerability in webtop/eventviewer/eventViewer.jsp in the Web GUI in IBM Netcool/OMNIbus 7.4.0 before FP2 allows remote authenticated users to inject arbitrary web script or HTML via a crafted URL, a different vulnerability than CVE-2014-0942.
Affected configurations
Node
ibmtivoli_netcool\/omnibusMatch7.4.0
| CPE | Name | Operator | Version |
|---|---|---|---|
| ibm:tivoli_netcool\/omnibus | ibm tivoli netcool/omnibus | eq | 7.4.0 |
Related
cve
cve
CVE-2014-0942
2014-05-01 17:29:56
nvd
nvd
CVE-2014-0941
2014-05-01 17:29:56
CVE-2014-0942
2014-05-01 17:29:56
prion
prion
Cross site scripting
2014-05-01 17:29:00
Cross site scripting
2014-05-01 17:29:00
cvelist
cvelist
CVE-2014-0941
2014-05-01 17:00:00
CVE-2014-0942
2014-05-01 17:00:00
3.5 Low
CVSS2
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
SINGLE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:M/Au:S/C:N/I:P/A:N
5.2 Medium
AI Score
Confidence
High
0.001 Low
EPSS
Percentile
27.6%
Related for CVE-2014-0941