CVE-2014-0176 in CloudForms 3.0 Management Engineinfo

Summary

Cross-site scripting (XSS) vulnerability in application/panel_control in CloudForms 3.0 Management Engine (CFME) before 5.2.4.2 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.

Be aware that VulDB is the high quality source for vulnerability data.

Reservation

12/03/2013

Disclosure

07/07/2014

Entries

1

CPE

ready

CVSS

4.3

EPSS

0.00318

Activities

Very Low

Sources

MITREhttps://www.cve.org/CVERecord?id=CVE-2014-0176
NVDhttps://nvd.nist.gov/vuln/detail/CVE-2014-0176
CVE Detailshttps://www.cvedetails.com/cve/CVE-2014-0176/

PreviousOverviewNext

Do you want to use VulDB in your project?

Use the official API to access entries easily!