CVE-2007-3062 — Cross-site Scripting in HP System Management Homepage

3 documents3 sources

Severity

4.3MEDIUMNVD

EPSS

3.7%

top 12.08%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

HP System Management Homepage

Timeline

PublishedJun 6

Latest updateMay 1

Description

Cross-site scripting (XSS) vulnerability in HP System Management Homepage (SMH) before 2.1.2 running on Linux and Windows allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.

CVSS vector

AV:N/AC:M/C:N/I:P/A:NExploitability: 8.6 | Impact: 2.9

Affected Packages1 packages

▶NVDhp/system_management_homepage5 versions+4

Patches

Patch: secunia.com ↗Patch: www.securitytracker.com ↗Patch: secunia.com ↗

🔴Vulnerability Details

GHSA

GHSA-gxjw-9699-jx3p: Cross-site scripting (XSS) vulnerability in HP System Management Homepage (SMH) before 2↗2022-05-01

▶

CVEList

CVE-2007-3062: Cross-site scripting (XSS) vulnerability in HP System Management Homepage (SMH) before 2↗2007-06-06

▶