CVE-2011-1716

Published Apr 18, 2011
Last updated 6 years ago
Overview

Description: Multiple cross-site scripting (XSS) vulnerabilities in the Web UI in Xymon before 4.3.1 allow remote attackers to inject arbitrary web script or HTML via unspecified vectors.
Source: cve@mitre.org
NVD status: Modified
Hype score: Not currently trending
Risk scores

CVSS 2.0

Type: Primary
Base score: 4.3
Impact score: 2.9
Exploitability score: 8.6
Vector string: AV:N/AC:M/Au:N/C:N/I:P/A:N
Weaknesses

nvd@nist.gov: CWE-79
Configurations

[
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:a:xymon:xymon:*:beta3:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "BD14F8B7-F57C-424F-BF38-CF9F54A4E838"
          },
          {
            "criteria": "cpe:2.3:a:xymon:xymon:*:beta4:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "15F71F03-2D65-4324-A459-90A375AAAF1B"
          },
          {
            "criteria": "cpe:2.3:a:xymon:xymon:*:beta5:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "EF49DB6E-A1AF-47C4-8BE3-D034123171CA"
          },
          {
            "criteria": "cpe:2.3:a:xymon:xymon:*:beta6:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "AABC1B37-75A0-4C1F-B512-73F8BF1D2592"
          },
          {
            "criteria": "cpe:2.3:a:xymon:xymon:*:rc1:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "77CD6EEB-DE9B-4C49-86A7-F855B5EF1C17"
          },
          {
            "criteria": "cpe:2.3:a:xymon:xymon:*:rc2:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "2797102B-29CC-41B6-B5F1-D468246CDE02"
          },
          {
            "criteria": "cpe:2.3:a:xymon:xymon:*:rc3:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "D392EB3D-E120-4E4D-A467-08BC1FBCAF8D"
          },
          {
            "criteria": "cpe:2.3:a:xymon:xymon:*:rc4:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "CEBED51A-3260-419E-AF81-2E323283729B"
          },
          {
            "criteria": "cpe:2.3:a:xymon:xymon:*:rc5:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "61C0908F-1EA0-4E01-9E84-43700E2E3D52"
          },
          {
            "criteria": "cpe:2.3:a:xymon:xymon:*:rc6:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "4E47DC8E-2196-45DF-985E-9892235A6108"
          },
          {
            "criteria": "cpe:2.3:a:xymon:xymon:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "7F370198-BB7D-4235-BD66-DC61E4B123F5",
            "versionEndIncluding": "4.3.0"
          },
          {
            "criteria": "cpe:2.3:a:xymon:xymon:4.0:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "D34E3D6A-8A6D-4C38-9695-3B4B68805206"
          },
          {
            "criteria": "cpe:2.3:a:xymon:xymon:4.0.1:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "F9CA43BB-EB51-4DE2-BDBE-4AB36ABB45A8"
          },
          {
            "criteria": "cpe:2.3:a:xymon:xymon:4.0.2:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "B777EA27-4EF3-43A4-B526-04B3D781B37B"
          },
          {
            "criteria": "cpe:2.3:a:xymon:xymon:4.0.3:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "0D529B6C-13F4-42E0-91A8-A453D1FB18DB"
          },
          {
            "criteria": "cpe:2.3:a:xymon:xymon:4.0.4:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "D5FB831F-695C-4ACD-B9B6-91910CC38E48"
          },
          {
            "criteria": "cpe:2.3:a:xymon:xymon:4.1.0:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "DFF9FA93-847A-4643-BB90-90AC31DE7C72"
          },
          {
            "criteria": "cpe:2.3:a:xymon:xymon:4.1.1:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "F7A7DED6-B90D-4A05-ACF1-510D16B2C1F6"
          },
          {
            "criteria": "cpe:2.3:a:xymon:xymon:4.1.2:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "B3EBFA2C-78A8-45BB-B6E2-F74595943813"
          },
          {
            "criteria": "cpe:2.3:a:xymon:xymon:4.1.2:p1:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "6A33AD76-55B7-42B4-997B-B4C595030AC9"
          },
          {
            "criteria": "cpe:2.3:a:xymon:xymon:4.1.2:p2:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "DB9A6911-0622-4A71-8ADA-1BC162F12C96"
          },
          {
            "criteria": "cpe:2.3:a:xymon:xymon:4.2.0:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "B8483753-07E0-476A-8D04-85905B50CEB4"
          },
          {
            "criteria": "cpe:2.3:a:xymon:xymon:4.2.2:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "1071598C-C7CC-4704-A883-7FBAE94F3573"
          },
          {
            "criteria": "cpe:2.3:a:xymon:xymon:4.2.3:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "D6C4977F-2C44-4222-BD38-266127076A0C"
          },
          {
            "criteria": "cpe:2.3:a:xymon:xymon:4.3.0:beta1:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "E4BEDF60-02D7-4192-A3BE-6D35A6BAE886"
          },
          {
            "criteria": "cpe:2.3:a:xymon:xymon:4.3.0:beta2:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "8AE0300B-8514-409A-AA89-A591918855C7"
          },
          {
            "criteria": "cpe:2.3:a:xymon:xymon:4.3.0:beta3:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "2FD5FA1D-576F-4A4F-873B-8F47BD871374"
          },
          {
            "criteria": "cpe:2.3:a:xymon:xymon:4.3.0:rc1:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "EB113981-5BE0-4AAC-94E3-6A2C34A5E7E8"
          }
        ],
        "operator": "OR"
      }
    ]
  }
]
Overview

Social media

Risk scores

CVSS 2.0

Weaknesses

Configurations

References
