HP NNMi 8.x / 9.0x / 9.1x / 9.20 Unspecified XSS

This script is Copyright (C) 2013-2015 Tenable Network Security, Inc.


Synopsis :

The remote web server hosts an application that is affected by a
cross- site scripting vulnerability.

Description :

According to its version number, the web interface for HP Network Node
Manager i (NNMi) installed on the remote host is affected by an
unspecified cross-site scripting vulnerability.

See also :

http://www.nessus.org/u?e47ecda9

Solution :

For HP Network Node Manager i (NNMi) 9.0x, 9.1x, and 9.20 apply the
appropriate hotfix provided by the vendor. For NNMi 8.x, first upgrade
to one of those versions and then apply the appropriate hotfix.
Alternatively, upgrade to version 9.21 or later.

Risk factor :

Medium / CVSS Base Score : 4.3
(CVSS2#AV:N/AC:M/Au:N/C:N/I:P/A:N)
CVSS Temporal Score : 3.6
(CVSS2#E:F/RL:OF/RC:C)
Public Exploit Available : true

Family: Windows

Nessus Plugin ID: 70147 ()

Bugtraq ID: 54815

CVE ID: CVE-2012-2022

Ready to Amp Up Your Nessus Experience?

Get Nessus Professional to scan unlimited IPs, run compliance checks & more

Buy Nessus Professional Now