CVE-2016-4058

Description

Cross-site scripting (XSS) vulnerability in Huawei Policy Center before V100R003C10SPC020 allows remote authenticated users to inject arbitrary web script or HTML via vectors related to special characters on pages.

Risk Information

Base Score

5.4

MODERATE

Vector

CVSS:3.0/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N

EPSS Score

Exploitation Probability

0.087

Associated Vulnerability

Vulnerability	OS Platform
Vulnerabilities CVE-2015-2808 ,CVE-2016-4058 are affected in policy_center v100r003c10	NCM
Vulnerabilities CVE-2015-2808 ,CVE-2016-4058 are affected in policy_center v100r003c00	NCM
Improper Neutralization of Input During Web Page Generation (Cross-site Scripting) Vulnerability (CVE-2016-4058)	NCM

Patch Details

No records found

References

https://nvd.nist.gov/vuln/detail/CVE-2023-1234
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-1234