CVE-2016-4392Cross-site Scripting in HP Business Service Management

CWE-79Cross-site Scripting3 documents3 sources
Severity
5.4MEDIUMNVD
EPSS
0.3%
top 49.30%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
2
HP Business Service ManagementHewlett Packard Enterprise HP Business Service Manager
Timeline
PublishedAug 6
Latest updateMay 14

Description

A remote cross site scripting vulnerability has been identified in HP Business Service Management software v9.1x, v9.20 - v9.25IP1.

CVSS vector

CVSS:3.0/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:NExploitability: 2.3 | Impact: 2.7

Affected Packages2 packages

NVDhp/business_service_management9.209.25+2

🔴Vulnerability Details

2
GHSA
GHSA-p4mh-jr9f-4mp9: A remote cross site scripting vulnerability has been identified in HP Business Service Management software v92022-05-14
CVEList
CVE-2016-4392: A remote cross site scripting vulnerability has been identified in HP Business Service Management software v92018-08-06
CVE-2016-4392 — Cross-site Scripting in HP | cvebase