Lucene search
HistoryApr 08, 2015 - 1:59 a.m.
CVE-2015-1773
cve-2015-1773
xss
apache flex
web script injection
html injection
security vulnerability
4.3 Medium
CVSS2
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:M/Au:N/C:N/I:P/A:N
5.7 Medium
AI Score
Confidence
High
0.042 Low
EPSS
Percentile
92.3%
Cross-site scripting (XSS) vulnerability in asdoc/templates/index.html in Apache Flex before 4.14.1 allows remote attackers to inject arbitrary web script or HTML by providing a crafted URI to JavaScript code generated by the asdoc component.
Affected configurations
Node
apacheflexRange≤4.14.0
| CPE | Name | Operator | Version |
|---|---|---|---|
| apache:flex | apache flex | le | 4.14.0 |
Related
nessus
nessus
Adobe/Apache Flex ASDoc Tool XSS
2015-05-14 00:00:00
alpinelinux
alpinelinux
CVE-2015-1773
2015-04-08 01:59:00
securityvulns
securityvulns
CVE-2015-1773 Apache Flex reflected XSS vulnerability
2015-05-12 00:00:00
adobe
adobe
APSB15-08 Security bulletin available for Adobe Flex
2015-04-14 00:00:00
prion
prion
Cross site scripting
2015-04-08 01:59:00
nvd
nvd
CVE-2015-1773
2015-04-08 01:59:01
cvelist
cvelist
CVE-2015-1773
2015-04-08 01:00:00
threatpost
threatpost
April 2015 Microsoft Patch Tuesday Security Bulletins
2015-04-14 14:49:25
4.3 Medium
CVSS2
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:M/Au:N/C:N/I:P/A:N
5.7 Medium
AI Score
Confidence
High
0.042 Low
EPSS
Percentile
92.3%
Related for CVE-2015-1773