Vulnerability Details CVE-2016-2010
Cross-site scripting (XSS) vulnerability in HPE Network Node Manager i (NNMi) 9.20, 9.23, 9.24, 9.25, 10.00, and 10.01 allows remote authenticated users to inject arbitrary web script or HTML via unspecified vectors, a different vulnerability than CVE-2016-2011.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.002
EPSS Ranking 39.4%
CVSS Severity
CVSS v3 Score 5.4
CVSS v2 Score 3.5
References
Products affected by CVE-2016-2010
-
cpe:2.3:a:hp:network_node_manager_i:10.00
-
cpe:2.3:a:hp:network_node_manager_i:10.01
-
cpe:2.3:a:hp:network_node_manager_i:9.20
-
cpe:2.3:a:hp:network_node_manager_i:9.23
-
cpe:2.3:a:hp:network_node_manager_i:9.24
-
cpe:2.3:a:hp:network_node_manager_i:9.25