CVE-2012-2021

HP AssetManager 5.20, 5.21, 5.22, 9.30 - Authenticated Cross-Site Scripting

Title source: llm

Description

Multiple cross-site scripting (XSS) vulnerabilities in HP AssetManager 5.20, 5.21, 5.22, and 9.30 allow remote authenticated users to inject arbitrary web script or HTML via unspecified vectors.

References (1)

Core 1

Core References

Vendor Advisory vendor-advisory x_refsource_hp

http://h20566.www2.hp.com/portal/site/hpsc/public/kb/docDisplay/?docId=emr_na-c03403333

Scores

EPSS 0.0062

EPSS Percentile 70.3%

Details

CWE

CWE-79

Status published

Products (4)

hp/assetmanager 5.20

hp/assetmanager 5.21

hp/assetmanager 5.22

hp/assetmanager 9.30

Published Jul 16, 2012

Tracked Since Feb 18, 2026