Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2013-2270

Overview

Vulnerability Score 4.3 4.3
CVE Id CVE-2013-2270
Last Modified 10 Mar 2014 10:31:41
Published 09 Mar 2014 09:16:56
Confidentiality Impact NONE NONE
Integrity Impact PARTIAL PARTIAL
Availability Impact NONE NONE
Access Vector NETWORK
Access Complexity MEDIUM
Authentication NONE

CVE-2013-2270

Summary

Cross-site scripting (XSS) vulnerability in the administration page in Airvana HubBub C1-600-RT and Sprint AIRAVE 2.5 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.

Vulnerable Systems

Application

  • Sprint Airave Software 2.5


References

XF - airrave-unspecified-xss(82494)

BID - 58194

MISC - http://packetstormsecurity.com/files/120594/Airvana-HubBub-C1-600-RT-Cross-Site-Scripting.html

OSVDB - 90732

BUGTRAQ - 20130227 Stored Cross-site Scripting ('XSS') in Airvana HubBub C1-600-RT Femtocell


Last Updated: 27 May 2016 10:55:16