CVE-2008-1663

Description

Cross-site scripting (XSS) vulnerability in HP System Management Homepage (SMH) 2.1.10 and 2.1.11 on Linux and Windows allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.

Risk Information

Base Score

6.1

MODERATE

Vector

AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N

EPSS Score

Exploitation Probability

0.387

Associated Vulnerability

Vulnerability	OS Platform
Update HP System Management Homepage Detection (x64) 2.1.10 to latest version	Windows
Update HP System Management Homepage Detection (x64) 2.1.11 to latest version	Windows
Update HP System Management Homepage Detection 2.1.10 to latest version	Windows
Update HP System Management Homepage Detection 2.1.11 to latest version	Windows
Update HP System Management Homepage Detection 2.1.10 to latest version (For Ubuntu)	Linux
Update HP System Management Homepage Detection 2.1.11 to latest version (For Ubuntu)	Linux
Update HP System Management Homepage Detection 2.1.10 to latest version (For Debian)	Linux
Update HP System Management Homepage Detection 2.1.11 to latest version (For Debian)	Linux
Update HP System Management Homepage Detection 2.1.10 to latest version (For Centos)	Linux
Update HP System Management Homepage Detection 2.1.11 to latest version (For Centos)	Linux
Update HP System Management Homepage Detection 2.1.10 to latest version (For RedHat)	Linux
Update HP System Management Homepage Detection 2.1.11 to latest version (For RedHat)	Linux
Update HP System Management Homepage Detection 2.1.10 to latest version (For Suse)	Linux
Update HP System Management Homepage Detection 2.1.11 to latest version (For Suse)	Linux
Multiple Vulnerabilities affected in system_management_homepage 2.1.11	NCM
Improper Neutralization of Input During Web Page Generation (Cross-site Scripting) Vulnerability (CVE-2008-1663)	NCM

Patch Details

No records found

References

https://nvd.nist.gov/vuln/detail/CVE-2023-1234
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-1234