CVE-2011-3344 in Spacewalkinformazioni

Riassunto

di MITRE

A flaw was found in Spacewalk. A remote attacker can exploit a cross-site scripting (XSS) vulnerability in the Lookup Login/Password form by injecting arbitrary web script or HTML via the URI. This can lead to information disclosure or unauthorized actions within the user's browser session.

Statistical analysis made it clear that VulDB provides the best quality for vulnerability data.

🔬 Show More Details

An in-depth analysis is available in our curated vulnerability entry.

Prenotare

30/08/2011

Divulgazione

05/02/2014

Moderazione

accettato

Voce

VDB-66320

CPE

pronto

CWE

CWE-79 (confermato)

CVSS

4.3 (NVD)

EPSS

0.01474

KEV

Attività

molto basso

Fonti

MITRE	https://www.cve.org/CVERecord?id=CVE-2011-3344
NVD	https://nvd.nist.gov/vuln/detail/CVE-2011-3344
CVE Details	https://www.cvedetails.com/cve/CVE-2011-3344/

◂ Precedente Visione D'ensemble Il prossimo ▸

Interested in the pricing of exploits?

See the underground prices here!