admin/nvd-json-data-feeds
1
0
Fork 0
mirror of https://github.com/fkie-cad/nvd-json-data-feeds.git synced 2025-05-28 17:21:36 +00:00
Code Issues Packages Projects Releases Wiki Activity
nvd-json-data-feeds/CVE-2010/CVE-2010-09xx/CVE-2010-0927.json
cad-safe-bot 9d8babeec3 Auto-Update: 2024-07-14T02:00:17.787041+00:00
2024-07-14 02:06:08 +00:00

140 lines
4.8 KiB
JSON
Raw Blame History

{
"id": "CVE-2010-0927",
"sourceIdentifier": "cve@mitre.org",
"published": "2010-03-05T17:30:00.347",
"lastModified": "2010-03-05T17:30:00.347",
"vulnStatus": "Analyzed",
"cveTags": [],
"descriptions": [
{
"lang": "en",
"value": "Cross-site scripting (XSS) vulnerability in help/readme.nsf/Header in the Help component in IBM Lotus Domino 7.x before 7.0.4 and 8.x before 8.0.2 allows remote attackers to inject arbitrary web script or HTML via the BaseTarget parameter in an OpenPage action. NOTE: this may overlap CVE-2010-0920."
},
{
"lang": "es",
"value": "Vulnerabilidad de secuencias de comandos en sitios cruzados (XSS) en help/readme.nsf/Header en the Help component en IBM Lotus Domino v7.x anteriores a v7.0.4 y v8.x anteriores a v8.0.2 permite a atacantes remotos inyectar secuencias de comandos web o HTML de forma arbitraria a trav\u00e9s del par\u00e1metro \"BaseTarget\" en una acci\u00f3n OpenPage. NOTA: Esta vulnerabilidad se solapa con CVE-2010-0920."
}
],
"metrics": {
"cvssMetricV2": [
{
"source": "nvd@nist.gov",
"type": "Primary",
"cvssData": {
"version": "2.0",
"vectorString": "AV:N/AC:M/Au:N/C:N/I:P/A:N",
"accessVector": "NETWORK",
"accessComplexity": "MEDIUM",
"authentication": "NONE",
"confidentialityImpact": "NONE",
"integrityImpact": "PARTIAL",
"availabilityImpact": "NONE",
"baseScore": 4.3
},
"baseSeverity": "MEDIUM",
"exploitabilityScore": 8.6,
"impactScore": 2.9,
"acInsufInfo": false,
"obtainAllPrivilege": false,
"obtainUserPrivilege": false,
"obtainOtherPrivilege": false,
"userInteractionRequired": true
}
]
},
"weaknesses": [
{
"source": "nvd@nist.gov",
"type": "Primary",
"description": [
{
"lang": "en",
"value": "CWE-79"
}
]
}
],
"configurations": [
{
"nodes": [
{
"operator": "OR",
"negate": false,
"cpeMatch": [
{
"vulnerable": true,
"criteria": "cpe:2.3:a:ibm:lotus_domino:7.0:*:*:*:*:*:*:*",
"matchCriteriaId": "8FDDB5FD-9152-4A9C-829B-8BA2ACB3A5A1"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:a:ibm:lotus_domino:7.0.1:*:*:*:*:*:*:*",
"matchCriteriaId": "A8A7AF44-125F-4760-8370-34B7B4CB8753"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:a:ibm:lotus_domino:7.0.1.1:*:*:*:*:*:*:*",
"matchCriteriaId": "48E4A116-4FEF-4EAF-B4C4-F6096853F791"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:a:ibm:lotus_domino:7.0.2:*:*:*:*:*:*:*",
"matchCriteriaId": "69495B18-39A4-443F-A724-F713C4DD14A2"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:a:ibm:lotus_domino:7.0.2.1:*:*:*:*:*:*:*",
"matchCriteriaId": "63DD600E-2405-4954-B4EC-218ED0CF2492"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:a:ibm:lotus_domino:7.0.2.2:*:*:*:*:*:*:*",
"matchCriteriaId": "42C54057-4166-476B-A184-CD3F4844D0D3"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:a:ibm:lotus_domino:7.0.2.3:*:*:*:*:*:*:*",
"matchCriteriaId": "A0224534-201F-428A-A2D8-2C957BF57149"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:a:ibm:lotus_domino:7.0.3:*:*:*:*:*:*:*",
"matchCriteriaId": "A946E7EE-769E-4676-AA7A-97CDD9168A5E"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:a:ibm:lotus_domino:7.0.3.1:*:*:*:*:*:*:*",
"matchCriteriaId": "4AA31957-2452-4992-8DDA-7DDAAD09EC1C"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:a:ibm:lotus_domino:8.0:*:*:*:*:*:*:*",
"matchCriteriaId": "6C3DB9C3-4DAC-4663-9097-95600E13FCDB"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:a:ibm:lotus_domino:8.0.1:*:*:*:*:*:*:*",
"matchCriteriaId": "CE8510F6-D054-488E-99E9-A58272C47AA3"
}
]
}
]
}
],
"references": [
{
"url": "http://www.cybsec.com/vuln/CYBSEC_Advisory_2010_0301_IBM_%20Lotus_Dominio_Readme_nsf_Reflected_XSS.pdf",
"source": "cve@mitre.org",
"tags": [
"Exploit"
]
},
{
"url": "http://www.securityfocus.com/bid/38481",
"source": "cve@mitre.org",
"tags": [
"Exploit"
]
}
]
}
Reference in New Issue View Git Blame Copy Permalink