4.3
CVSSv2

CVE-2013-0275

Published: 14/03/2013 Updated: 19/03/2013
CVSS v2 Base Score: 4.3 | Impact Score: 2.9 | Exploitability Score: 8.6
VMScore: 383
Vector: AV:N/AC:M/Au:N/C:N/I:P/A:N

Vulnerability Summary

Multiple cross-site scripting (XSS) vulnerabilities in Ganglia Web prior to 3.5.6 allow remote attackers to inject arbitrary web script or HTML via unspecified vectors.

Affected Products

Vendor Product Versions
GangliaGanglia-web2.1.0, 2.1.1, 2.1.2, 2.1.3, 2.1.5, 2.1.6, 2.1.7, 2.1.8, 2.2.0, 3.3.0, 3.3.1, 3.4.1, 3.4.2, 3.5.0, 3.5.1, 3.5.2, 3.5.3, 3.5.4, 3.5.5

Vendor Advisories

Debian Bug report logs - #700158 ganglia: CVE-2013-0275 and CVE-2013-1770: several XSS flaws Package: src:ganglia; Maintainer for src:ganglia is Debian Monitoring Maintainers <pkg-monitoring-maintainers@listsaliothdebianorg>; Reported by: Salvatore Bonaccorso <carnil@debianorg> Date: Sat, 9 Feb 2013 08:09:02 UTC ...