Pivotal Operations Manager sérülékenysége

CH azonosító:
Cím: Pivotal Operations Manager sérülékenysége
Angol cím: Pivotal Operations Manager vuln


Leírás

Pivotal Operations Manager, 2.1.x versions prior to 2.1.20, 2.2.x versions prior to 2.2.16, 2.3.x versions prior to 2.3.10, 2.4.x versions prior to 2.4.3, contains a reflected cross site scripting vulnerability. A remote user that is able to convince an Operations Manager user to interact with malicious content could execute arbitrary JavaScript in the user’s browser.
Leírás forrása: https://nvd.nist.gov/vuln/detail/CVE-2019-3776
Leírás utolsó módosítása:


Elemzés leírás


Elemzés leírás forrása:
Elemzés leírás utolsó módosítása:


Hatás

CVSS3 Severity and Metrics

Base score: 5.4
Vector: AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N
Impact Score: 2.7
Exploitability Score: 2.3


Attack Vector (AV): Network
Attack Complexity (AC): Low
Privileges Required (PR): Low
User Interaction (UI): Required
Scope (S): Changed
Confidentiality Impact (C): Low
Integrity Impact (I): Low
Availability Impact (A): None

CVSS2 Severity and Metrics

Base score:
Vector:
Impact Subscore:
Exploitability Subscore:



Hivatkozások

http://www.securityfocus.com/bid/107344
https://pivotal.io/security/cve-2019-3776