- Description
- Cross-site scripting (XSS) vulnerability in Hitachi Business Logic - Container 02-03 through 03-00-/B on Windows, and 03-00 through 03-00-/B on Linux, allows remote attackers to inject arbitrary web script or HTML via unspecified vectors in the extended receiving box function.
- Source
- cve@mitre.org
- NVD status
- Modified
CVSS 2.0
- Type
- Primary
- Base score
- 4.3
- Impact score
- 2.9
- Exploitability score
- 8.6
- Vector string
- AV:N/AC:M/Au:N/C:N/I:P/A:N
- Hype score
- Not currently trending
[
{
"nodes": [
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:a:hitachi:business_logic:*:*:linux:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "F6C67B7F-9F57-435D-B683-0374EE79D2A1",
"versionEndIncluding": "03_00_b"
},
{
"criteria": "cpe:2.3:a:hitachi:business_logic:*:*:windows:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "48573C0B-34B2-4B24-8E83-7C59BC211EBC",
"versionEndIncluding": "03_00_b"
},
{
"criteria": "cpe:2.3:a:hitachi:business_logic:02_03:*:windows:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "85014A59-7FC0-459F-BDE1-46D0C0C1EBE0"
},
{
"criteria": "cpe:2.3:a:hitachi:business_logic:03_00:*:linux:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "A421DB1E-17E3-4C9C-8043-81074A305F6C"
}
],
"operator": "OR"
}
]
}
]