CVE-2011-4436

Dell Kace K2000 Systems Deployment Appliance - XSS

Title source: rule

Description

Multiple cross-site scripting (XSS) vulnerabilities in the administrative web interface on the Dell KACE K2000 System Deployment Appliance allow remote attackers to inject arbitrary web script or HTML via unspecified vectors.

References (2)

[Various Sources] http://www.kace.com/support/kb/index.php?action=artikel&id=1120&artlang=en

[US Government Resource] http://www.kb.cert.org/vuls/id/193529

Scores

EPSS 0.0050

EPSS Percentile 65.7%

Classification

CWE

CWE-79

Status published

Affected Products (2)

dell/kace_k2000_systems_deployment_appliance

n/a/n/a

Timeline

Published Nov 12, 2011

Tracked Since Feb 18, 2026