XSS Vulnerability in LinuxKI by Hewlett Packard
CVE-2020-7208

6.1MEDIUM

Key Information:

Vendor: HP
Status: Linuxki
Vendor: CVE Published:; 13 February 2020

Summary

LinuxKI versions 6.0-1 and earlier are susceptible to a Cross-Site Scripting (XSS) vulnerability, leading to potential compromise of user data. This issue has been addressed in release 6.0-2, which mitigates the risk associated with this type of attack. Users are strongly advised to upgrade to the latest version to ensure protection against exploitation.

Affected Version(s)

LinuxKI 6.0-1 and earlier

References

https://github.com/HewlettPackard/LinuxKI/releases/tag/v6...

x_refsource_MISC

CVSS V3.1

Score:

6.1

Severity:

MEDIUM

Confidentiality:

Low

Integrity:

Low

Availability:

Low

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

Required

Scope:

Changed

Timeline

Vulnerability published
Feb 13, 2020
Vulnerability Reserved
Jan 16, 2020