CVE-2010-5192

medium

Description

Cross-site scripting (XSS) vulnerability in the Java Management Console in Blue Coat ProxySG before SGOS 4.3.4.1, 5.x before SGOS 5.4.5.1, 5.5 before SGOS 5.5.4.1, and 6.x before SGOS 6.1.1.1 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.

References

https://kb.bluecoat.com/index?page=content&id=SA47

https://exchange.xforce.ibmcloud.com/vulnerabilities/62240

http://www.vupen.com/english/advisories/2010/2562

http://www.securityfocus.com/bid/43675

http://www.osvdb.org/68322

http://securitytracker.com/id?1024503

http://secunia.com/advisories/41695

Details

Source: Mitre, NVD

Published: 2012-08-26

Updated: 2017-08-29

Risk Information

CVSS v2

Base Score: 4.3

Vector: CVSS2#AV:N/AC:M/Au:N/C:N/I:P/A:N

Severity: Medium

CVSS v3

Base Score: 6.1

Vector: CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N

Severity: Medium