CVE-2008-3482

  1. OpenCVE
  2. Vulnerabilities (CVE)
  3. CVE-2008-3482
Cross-site scripting (XSS) vulnerability in the error page feature in Panasonic Network Camera BL-C111, BL-C131, BB-HCM511, BB-HCM531, BB-HCM580, BB-HCM581, BB-HCM527, and BB-HCM515 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.

4.3 /10

CVSS v2.0 : MEDIUM

V2 Legend

Vector : AV:N/AC:M/Au:N/C:N/I:P/A:N

Exploitability : 8.6 / Impact : 2.9

Access Vector NETWORK

Access Complexity MEDIUM

Authentication NONE

Confidentiality Impact NONE

Integrity Impact PARTIAL

Availability Impact NONE

References
Link Resource
http://jvn.jp/en/jp/JVN33706820/index.html
http://jvndb.jvn.jp/contents/ja/2008/JVNDB-2008-000037.html
http://panasonic.net/pcc/support/netwkcam/support/info_xss.html Patch
http://secunia.com/advisories/31304 Vendor Advisory
http://www.vupen.com/english/advisories/2008/2257/references
https://exchange.xforce.ibmcloud.com/vulnerabilities/44118
Configurations

Configuration 1 (hide)

OR cpe:2.3:h:panasonic:bb_hcm511:3.20:r01:*:*:*:*:*:*
cpe:2.3:h:panasonic:bb_hcm515:3.20:r01:*:*:*:*:*:*
cpe:2.3:h:panasonic:bb_hcm527:3.30:r01:*:*:*:*:*:*
cpe:2.3:h:panasonic:bb_hcm531:3.20:r01:*:*:*:*:*:*
cpe:2.3:h:panasonic:bb_hcm580:3.21:r00:*:*:*:*:*:*
cpe:2.3:h:panasonic:bb_hcm581:3.21:r00:*:*:*:*:*:*
cpe:2.3:h:panasonic:bl_c111:3.14:r02:*:*:*:*:*:*
cpe:2.3:h:panasonic:bl_c131:3.14:r03:*:*:*:*:*:*
History

No history.

Information

Published : 2008-08-05 20:41

Updated : 2023-12-10 10:51

NVD link : CVE-2008-3482

Mitre link : CVE-2008-3482

CVE.ORG link : CVE-2008-3482

JSON object : View

Products Affected

panasonic

  • bl_c111
  • bb_hcm580
  • bb_hcm531
  • bb_hcm527
  • bl_c131
  • bb_hcm581
  • bb_hcm515
  • bb_hcm511
CWE
CWE-79

Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')