CVE-2011-0892

HP Diagnostics - XSS

Title source: rule

Description

Cross-site scripting (XSS) vulnerability in HP Diagnostics 7.5x and 8.0x before 8.05.54.225 allows remote attackers to inject arbitrary web script or HTML via unknown vectors.

References (5)

[Vendor Advisory] http://marc.info/?l=bugtraq&m=130132024016475&w=2

[Vendor Advisory] http://secunia.com/advisories/43899

[Third Party Advisory, VDB Entry] http://securitytracker.com/id?1025255

[Third Party Advisory] http://www.vupen.com/english/advisories/2011/0798

[Third Party Advisory] http://securityreason.com/securityalert/8167

Scores

EPSS 0.0084

EPSS Percentile 74.5%

Classification

CWE

CWE-79

Status published

Affected Products (3)

hp/diagnostics

n/a/n/a

Timeline

Published Mar 29, 2011

Tracked Since Feb 18, 2026