CVE-2012-3251Cross-site Scripting in HP Service Center WEB Tier

CWE-79Cross-site Scripting3 documents3 sources
Severity
4.3MEDIUMNVD
EPSS
0.6%
top 29.82%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
2
HP Service Center WEB TierHP Service Manager WEB Tier
Timeline
PublishedAug 16
Latest updateMay 13

Description

Cross-site scripting (XSS) vulnerability in HP Service Manager Web Tier 7.11, 9.21, and 9.30, and HP Service Center Web Tier 6.28, allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.

CVSS vector

AV:N/AC:M/C:N/I:P/A:NExploitability: 8.6 | Impact: 2.9

Affected Packages2 packages

NVDhp/service_manager_web_tier7.11, 9.21, 9.30+2

🔴Vulnerability Details

2
GHSA
GHSA-qwmm-vgqw-2w28: Cross-site scripting (XSS) vulnerability in HP Service Manager Web Tier 72022-05-13
CVEList
CVE-2012-3251: Cross-site scripting (XSS) vulnerability in HP Service Manager Web Tier 72012-08-16
CVE-2012-3251 — Cross-site Scripting in HP | cvebase