CVE-2010-3003

Published Sep 10, 2010

Last updated 5 years ago

Overview

Description: Cross-site scripting (XSS) vulnerability in HP Insight Diagnostics Online Edition before 8.5.0-11 on Linux allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.
Source: hp-security-alert@hp.com
NVD status: Modified

Hype score: Not currently trending

Risk scores

CVSS 2.0

Type: Primary
Base score: 4.3
Impact score: 2.9
Exploitability score: 8.6
Vector string: AV:N/AC:M/Au:N/C:N/I:P/A:N

Weaknesses

nvd@nist.gov: CWE-79

Configurations

[
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:a:hp:insight_diagnostics:*:unknown:online_linux:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "425A2910-7BA2-4C59-8D78-87CFFB7DC682",
            "versionEndIncluding": "8.4"
          },
          {
            "criteria": "cpe:2.3:a:hp:insight_diagnostics:6.3.0-15:unknown:online_linux:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "C34F8F76-49FB-451C-A2B6-1E2ACBB72DD6"
          },
          {
            "criteria": "cpe:2.3:a:hp:insight_diagnostics:6.3.1-1:unknown:online_linux:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "16F2C4EA-9C98-4749-8AB9-AF19CA8A352B"
          },
          {
            "criteria": "cpe:2.3:a:hp:insight_diagnostics:7.0.0-30:unknown:online_linux:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "1D14EAFA-204C-41A7-8312-CAFDA506F1B8"
          },
          {
            "criteria": "cpe:2.3:a:hp:insight_diagnostics:7.0.1-8:unknown:online_linux:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "984C473A-247A-4B66-846D-E38EEED78464"
          },
          {
            "criteria": "cpe:2.3:a:hp:insight_diagnostics:7.4.0-11:unknown:online_linux:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "CF4E2CED-3927-4C7B-8A98-FCD5E5328242"
          },
          {
            "criteria": "cpe:2.3:a:hp:insight_diagnostics:7.5.0-14:unknown:online_linux:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "1F01C32F-7AD7-420E-A3B9-EFD9E486E440"
          },
          {
            "criteria": "cpe:2.3:a:hp:insight_diagnostics:7.5.5-1:unknown:online_linux:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "D5DE411B-BF4B-42FB-8E1E-EABC22BC1608"
          },
          {
            "criteria": "cpe:2.3:a:hp:insight_diagnostics:7.6.0-23:unknown:online_linux:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "14A7EBAA-19B1-46E5-BF45-310FB2EA4FA1"
          },
          {
            "criteria": "cpe:2.3:a:hp:insight_diagnostics:7.7.0-142:unknown:online_linux:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "71005822-DD4C-4AA6-8125-43D2D9DAB0E8"
          },
          {
            "criteria": "cpe:2.3:a:hp:insight_diagnostics:7.8.0-159:unknown:online_linux:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "C958DCA7-CF2F-4341-A418-3A27015CA4C9"
          },
          {
            "criteria": "cpe:2.3:a:hp:insight_diagnostics:7.9.0-105:unknown:online_linux:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "A928BB6C-2250-49EF-873F-9655B3350D97"
          },
          {
            "criteria": "cpe:2.3:a:hp:insight_diagnostics:7.9.1-15:unknown:online_linux:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "521886DB-FE4A-4291-B5C5-DEF7EA50F5A9"
          }
        ],
        "operator": "OR"
      }
    ]
  }
]

Overview

Social media

Risk scores

CVSS 2.0

Weaknesses

Configurations

References