CVE-2012-3296

NONECVSS 0.0

0.0

Cross-site scripting (XSS) vulnerability in the Help link in the login panel in IBM Power Hardware Management Console (HMC) 7R7.1.0 before SP4, 7R7.2.0 before SP2, and 7R7.3.0 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.

🔗 References (20)

psirt@ushttp://secunia.com/advisories/50376
psirt@ushttp://www.ibm.com/connections/blogs/PSIRT/entry/security_bulletin_the_help_link_on_the_power_hmc_login_panel_is_susceptible_to_reflected_cross_site_scripting_cve_2012_329617
psirt@ushttp://www.ibm.com/support/docview.wss?uid=isg1MB03488
psirt@ushttp://www.ibm.com/support/docview.wss?uid=isg1MB03489
psirt@ushttp://www.ibm.com/support/docview.wss?uid=isg1MB03494
psirt@ushttp://www.ibm.com/support/fixcentral/firmware/readme?fixid=MH01253
psirt@ushttp://www.ibm.com/support/fixcentral/firmware/readme?fixid=MH01257
psirt@ushttp://www.ibm.com/support/fixcentral/firmware/readme?fixid=MH01258
psirt@ushttp://www.securitytracker.com/id?1027433
psirt@ushttps://exchange.xforce.ibmcloud.com/vulnerabilities/77288
af854a3a-2127-422b-91ae-364da2661108http://secunia.com/advisories/50376
af854a3a-2127-422b-91ae-364da2661108http://www.ibm.com/connections/blogs/PSIRT/entry/security_bulletin_the_help_link_on_the_power_hmc_login_panel_is_susceptible_to_reflected_cross_site_scripting_cve_2012_329617
af854a3a-2127-422b-91ae-364da2661108http://www.ibm.com/support/docview.wss?uid=isg1MB03488
af854a3a-2127-422b-91ae-364da2661108http://www.ibm.com/support/docview.wss?uid=isg1MB03489
af854a3a-2127-422b-91ae-364da2661108http://www.ibm.com/support/docview.wss?uid=isg1MB03494

Is Your Infrastructure Affected by CVE-2012-3296?

EchelonGraph automatically scans your cloud infrastructure and maps CVE exposure using blast radius analysis.

Start Free Scan →Browse All CVEs

CVE-2012-3296

📅 Published

🔄 Last Modified

🔗 References (20)

Dependency Blast Radius

Is Your Infrastructure Affected by CVE-2012-3296?