Cross-Site Scripting Vulnerability in HPE Network Node Manager i Products
CVE-2016-2010
5.4MEDIUM
Summary
A cross-site scripting (XSS) vulnerability exists in certain versions of HPE Network Node Manager i (NNMi) that allows remote authenticated users to insert malicious web scripts or HTML content. This vulnerability could be exploited via unspecified vectors, potentially leading to unauthorized actions within affected network management interfaces.
References
CVSS V3.1
Score:
5.4
Severity:
MEDIUM
Confidentiality:
Low
Integrity:
Low
Availability:
Low
Attack Vector:
Network
Attack Complexity:
Low
Privileges Required:
Low
User Interaction:
Required
Scope:
Changed
Timeline
Vulnerability published
Vulnerability Reserved