Vulnerability Details CVE-2012-0414
Cross-site scripting (XSS) vulnerability in the Spacewalk service in SUSE Manager 1.2 for SUSE Linux Enterprise (SLE) 11 SP1 allows remote attackers to inject arbitrary web script or HTML via an image name.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.011
EPSS Ranking 77.4%
CVSS Severity
CVSS v2 Score 4.3
References
- http://support.novell.com/docs/Readmes/InfoDocument/patchbuilder/readme_5145796.html
- https://bugzilla.novell.com/show_bug.cgi?id=761165
- https://support.novell.com/security/cve/CVE-2012-0414.html
- http://support.novell.com/docs/Readmes/InfoDocument/patchbuilder/readme_5145796.html
- https://bugzilla.novell.com/show_bug.cgi?id=761165
- https://support.novell.com/security/cve/CVE-2012-0414.html
Products affected by CVE-2012-0414
-
cpe:2.3:a:novell:suse_manager:1.2
-
cpe:2.3:o:novell:suse_linux:11