CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2014-4661

Cross-site scripting (XSS) vulnerability in HP Records Manager before 7.3.5 and 8.x before 8.1 Patch 3 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.014

EPSS Ranking 79.3%

CVSS Severity

CVSS v2 Score 4.3

References

http://www.kb.cert.org/vuls/id/683972
http://www.securityfocus.com/bid/70286
https://h20564.www2.hp.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c04441391
https://h20564.www2.hp.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c04441391
http://www.kb.cert.org/vuls/id/683972
http://www.securityfocus.com/bid/70286
https://h20564.www2.hp.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c04441391
https://h20564.www2.hp.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c04441391

Products affected by CVE-2014-4661

Hp » Records Manager » Version: Any

cpe:2.3:a:hp:records_manager:*
Hp » Records Manager » Version: 8.1

cpe:2.3:a:hp:records_manager:8.1

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2014-4661

Products

Pricing

Contact Us