CVE-2005-4819
Published Dec 31, 2005
Last updated 7 years ago
Overview
- Description
- Cross-site scripting (XSS) vulnerability in Lotus Domino versions before 6.5.4 fix pack 1 (FP1) and versions before 7.0 allows remote attackers to inject arbitrary web script or HTML via unknown vectors.
- Source
- cve@mitre.org
- NVD status
- Modified
Risk scores
CVSS 2.0
- Type
- Primary
- Base score
- 6.8
- Impact score
- 6.4
- Exploitability score
- 8.6
- Vector string
- AV:N/AC:M/Au:N/C:P/I:P/A:P
Weaknesses
- nvd@nist.gov
- NVD-CWE-Other
Social media
- Hype score
- Not currently trending
Configurations
[
{
"nodes": [
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:a:ibm:lotus_domino:6.0.5:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "9C9EE627-6072-4359-981B-0168F7D44B7F"
},
{
"criteria": "cpe:2.3:a:ibm:lotus_domino:6.5.4:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "8F342FD1-7A60-4E7D-B56A-E1C3D560C728"
},
{
"criteria": "cpe:2.3:a:ibm:lotus_domino:6.5.4.1:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "EFBB2FBE-9A0A-49C9-A281-4D053513016B"
},
{
"criteria": "cpe:2.3:a:ibm:lotus_domino:6.5.4.2:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "D1B84127-574D-4C12-8823-787B1BBBAEA7"
},
{
"criteria": "cpe:2.3:a:ibm:lotus_domino:6.5.4.3:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "C7708DE5-A3C2-4024-B5AE-FC9DE963935F"
}
],
"operator": "OR"
}
]
}
]