Vulnerability Details CVE-2006-3574
Multiple cross-site scripting (XSS) vulnerabilities in Hitachi Groupmax Collaboration Portal and Web Client before 07-20-/D, and uCosminexus Collaboration Portal and Forum/File Sharing before 06-20-/C, allow remote attackers to "execute malicious scripts" via unknown vectors (aka HS06-014-01).
Exploit prediction scoring system (EPSS) score
EPSS Score 0.016
EPSS Ranking 80.5%
CVSS Severity
CVSS v2 Score 6.8
References
- http://secunia.com/advisories/20926
- http://www.hitachi-support.com/security_e/vuls_e/HS06-014_e/01-e.html
- http://www.hitachi-support.com/security_e/vuls_e/HS06-014_e/index-e.html
- http://www.securityfocus.com/bid/18830
- http://www.vupen.com/english/advisories/2006/2665
- https://exchange.xforce.ibmcloud.com/vulnerabilities/27605
- http://secunia.com/advisories/20926
- http://www.hitachi-support.com/security_e/vuls_e/HS06-014_e/01-e.html
- http://www.hitachi-support.com/security_e/vuls_e/HS06-014_e/index-e.html
- http://www.securityfocus.com/bid/18830
- http://www.vupen.com/english/advisories/2006/2665
- https://exchange.xforce.ibmcloud.com/vulnerabilities/27605
Products affected by CVE-2006-3574
-
cpe:2.3:a:hitachi:cosminexus_collaboration_portal:*
-
cpe:2.3:a:hitachi:cosminexus_collaboration_portal:06_00
-
cpe:2.3:a:hitachi:cosminexus_collaboration_portal:6.2
-
cpe:2.3:a:hitachi:groupmax_collaboration_portal:*
-
cpe:2.3:a:hitachi:groupmax_collaboration_portal:07_00
-
cpe:2.3:a:hitachi:groupmax_collaboration_portal:7.2
-
cpe:2.3:a:hitachi:groupmax_collaboration_web_client:*
-
cpe:2.3:a:hitachi:groupmax_collaboration_web_client:07_00
-
cpe:2.3:a:hitachi:groupmax_collaboration_web_client:7.2