Cross-Site Scripting Vulnerability in HP Virtual Connect Enterprise Manager for Windows
CVE-2010-1969

Currently unrated

Key Information:

Vendor: HP
Status: Virtual Connect Enterprise Manager
Vendor: CVE Published:; 22 July 2010

Summary

A cross-site scripting (XSS) vulnerability exists in the HP Virtual Connect Enterprise Manager for Windows prior to version 6.1. This flaw enables remote attackers to inject arbitrary web scripts or HTML into the affected application through unspecified vectors, potentially compromising user data and session integrity. Organizations using the vulnerable version should consider applying the necessary updates or patches to mitigate the risks associated with this vulnerability.

References

http://www.securitytracker.com/id?1024181

vdb-entryx_refsource_SECTRACK

http://secunia.com/advisories/40552

third-party-advisoryx_refsource_SECUNIA

http://www.vupen.com/english/advisories/2010/1797

vdb-entryx_refsource_VUPEN

Timeline

Vulnerability Reserved
Oct 3, 2022
Vulnerability published
Jul 22, 2010