Cross-Site Scripting Vulnerability in HP Network Node Manager i
CVE-2011-4155

Currently unrated

Key Information:

Vendor: HP
Status: Network Node Manager I
Vendor: CVE Published:; 16 November 2011

What is CVE-2011-4155?

A cross-site scripting (XSS) vulnerability exists in HP Network Node Manager i (NNMi) versions 9.0x and 9.1x. This flaw enables remote attackers to execute arbitrary web scripts or HTML on the client-side when victims interact with the compromised application through unspecified vectors. It can lead to unauthorized actions being taken on behalf of users, potentially exposing sensitive data and compromising application integrity.

References

http://www.securityfocus.com/archive/1/520459

vendor-advisoryx_refsource_HP

http://securityreason.com/securityalert/8532

third-party-advisoryx_refsource_SREASON

http://www.securityfocus.com/archive/1/520459

vendor-advisoryx_refsource_HP

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Nov 16, 2011
Vulnerability Reserved
Oct 21, 2011