CVE-2012-4939
Published Oct 31, 2012
Last updated 12 years ago
Overview
- Description
- Cross-site scripting (XSS) vulnerability in IPAMSummaryView.aspx in the IPAM web interface before 3.0-HotFix1 in SolarWinds Orion Network Performance Monitor might allow remote attackers to inject arbitrary web script or HTML via the "Search for an IP address" field.
- Source
- cret@cert.org
- NVD status
- Analyzed
Risk scores
CVSS 2.0
- Type
- Primary
- Base score
- 4.3
- Impact score
- 2.9
- Exploitability score
- 8.6
- Vector string
- AV:N/AC:M/Au:N/C:N/I:P/A:N
Weaknesses
- nvd@nist.gov
- CWE-79
Social media
- Hype score
- Not currently trending
Configurations
[
{
"nodes": [
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:a:solarwinds:ip_address_manager_web_interface:*:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "651B667A-F5D1-4B6C-91C5-7EE69D28AB0A",
"versionEndIncluding": "3.0"
},
{
"criteria": "cpe:2.3:a:solarwinds:orion_network_performance_monitor:-:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "0433752B-FCEB-4313-A137-3F2E970D8BF0"
},
{
"criteria": "cpe:2.3:a:solarwinds:orion_network_performance_monitor:10.0:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "F8C131A4-FE0E-4BE7-A2B4-70518469316D"
},
{
"criteria": "cpe:2.3:a:solarwinds:orion_network_performance_monitor:10.1:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "CAA52FCF-76A8-4738-B14E-27156757677D"
},
{
"criteria": "cpe:2.3:a:solarwinds:orion_network_performance_monitor:10.1.13.0:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "5C087ECB-98D9-4ED7-A431-4254BAF4E5A3"
},
{
"criteria": "cpe:2.3:a:solarwinds:orion_network_performance_monitor:10.2:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "27A83D40-5923-4D79-B03B-4BD0F72D9997"
},
{
"criteria": "cpe:2.3:a:solarwinds:orion_network_performance_monitor:10.2.1:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "3D90725C-2B9F-4214-A7CD-7B6D31578835"
},
{
"criteria": "cpe:2.3:a:solarwinds:orion_network_performance_monitor:10.2.2:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "0CBA6127-2A33-40E7-A28A-502DE8CB96A9"
},
{
"criteria": "cpe:2.3:a:solarwinds:orion_network_performance_monitor:10.3:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "48202B60-AAB5-457C-A24E-BE8C5B18E3A6"
},
{
"criteria": "cpe:2.3:a:solarwinds:orion_network_performance_monitor:10.3.1:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "B0F22FA7-C52B-4DF7-BF53-1C5671840625"
}
],
"operator": "OR"
}
]
}
]