Lucene search

[email protected]NVD:CVE-2008-2743

HistoryJun 17, 2008 - 3:41 p.m.

CVE-2008-2743

2008-06-1715:41:00

CWE-79

[email protected]

web.nvd.nist.gov

CVSS2

4.3

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:M/Au:N/C:N/I:P/A:N

AI Score

5.7

Confidence

High

EPSS

0.003

Percentile

65.6%

JSON

Cross-site scripting (XSS) vulnerability in the embedded web server in Xerox 4110, 4590, and 4595 Copier/Printers allows remote attackers to inject arbitrary web script or HTML via unknown attack vectors.

Affected configurations

Nvd

Node

xeroxxerox_4110

xeroxxerox_4590

xeroxxerox_4595

VendorProductVersionCPE
xeroxxerox_4110*cpe:2.3:h:xerox:xerox_4110:*:*:*:*:*:*:*:*
xeroxxerox_4590*cpe:2.3:h:xerox:xerox_4590:*:*:*:*:*:*:*:*
xeroxxerox_4595*cpe:2.3:h:xerox:xerox_4595:*:*:*:*:*:*:*:*

Vendor	Product	Version	CPE
xerox	xerox_4110	*	cpe:2.3:h:xerox:xerox_4110::::::::
xerox	xerox_4590	*	cpe:2.3:h:xerox:xerox_4590::::::::
xerox	xerox_4595	*	cpe:2.3:h:xerox:xerox_4595::::::::

References

secunia.com/advisories/30639

www.securityfocus.com/bid/29690

www.securitytracker.com/id?1020282

www.vupen.com/english/advisories/2008/1829/references

www.xerox.com/downloads/usa/en/c/cert_XRX08_007.pdf

exchange.xforce.ibmcloud.com/vulnerabilities/43058

CVSS2

4.3

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:M/Au:N/C:N/I:P/A:N

AI Score

5.7

Confidence

High

EPSS

0.003

Percentile

65.6%

JSON

Related for NVD:CVE-2008-2743

cvelist1 prion1 cve1