CVE-2008-1663Cross-site Scripting in HP System Management Homepage

CWE-79Cross-site Scripting3 documents3 sources
Severity
4.3MEDIUMNVD
EPSS
0.4%
top 40.13%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
1
HP System Management Homepage
Timeline
PublishedJul 9
Latest updateMay 1

Description

Cross-site scripting (XSS) vulnerability in HP System Management Homepage (SMH) 2.1.10 and 2.1.11 on Linux and Windows allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.

CVSS vector

AV:N/AC:M/C:N/I:P/A:NExploitability: 8.6 | Impact: 2.9

Affected Packages1 packages

NVDhp/system_management_homepage2.1.10, 2.1.11+1

🔴Vulnerability Details

2
GHSA
GHSA-jqr2-37rh-xw5j: Cross-site scripting (XSS) vulnerability in HP System Management Homepage (SMH) 22022-05-01
CVEList
CVE-2008-1663: Cross-site scripting (XSS) vulnerability in HP System Management Homepage (SMH) 22008-07-09
CVE-2008-1663 — Cross-site Scripting in HP | cvebase