CVE-2012-5200: XSS
First published: Sat Mar 09 2013(Updated: )
Cross-site scripting (XSS) vulnerability in HP Intelligent Management Center (iMC) and Intelligent Management Center for Automated Network Manager (ANM) before 5.2 E0401 allows remote authenticated users to inject arbitrary web script or HTML via unspecified vectors.
Credit: hp-security-alert@hp.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| HP Intelligent Management Center | <=5.1 | |
| HP Intelligent Management Center | =5.0 | |
| HP Intelligent Management Center | =5.0-e0101 | |
| HP Intelligent Management Center | =5.0-e0101h03 | |
| HP Intelligent Management Center | =5.0-e0101h04 | |
| HP Intelligent Management Center | =5.0-e0101l01 | |
| HP Intelligent Management Center | =5.0-e0101l02 | |
| HP Intelligent Management Center | =5.1 | |
| HP Intelligent Management Center | =5.1-e0101p01 | |
| HP Intelligent Management Center | <=5.1 | |
| HP Intelligent Management Center | <=5.1 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is the severity of CVE-2012-5200?
CVE-2012-5200 is classified as a medium severity vulnerability due to its capability to allow cross-site scripting (XSS) attacks.
How do I fix CVE-2012-5200?
To fix CVE-2012-5200, upgrade HP Intelligent Management Center and Intelligent Management Center for Automated Network Manager to version 5.2 E0401 or later.
Who is affected by CVE-2012-5200?
CVE-2012-5200 affects remote authenticated users of HP Intelligent Management Center versions prior to 5.2 E0401.
What types of attacks does CVE-2012-5200 enable?
CVE-2012-5200 enables cross-site scripting (XSS) attacks that can inject arbitrary web scripts or HTML.
Is there a known exploit for CVE-2012-5200?
Yes, CVE-2012-5200 can be exploited by authenticated users to execute malicious scripts in the context of the affected web application.
- agent/type
- agent/softwarecombine
- agent/references
- agent/severity
- agent/author
- agent/description
- collector/mitre-cve
- source/MITRE
- agent/last-modified-date
- agent/first-publish-date
- agent/event
- agent/source
- agent/weakness
- agent/tags
- collector/nvd-index
- agent/software-canonical-lookup-request
- vendor/hp
- canonical/hp intelligent management center
- version/hp intelligent management center/5.1
- version/hp intelligent management center/5.0
- version/hp intelligent management center/5.0-e0101
- version/hp intelligent management center/5.0-e0101h03
- version/hp intelligent management center/5.0-e0101h04
- version/hp intelligent management center/5.0-e0101l01
- version/hp intelligent management center/5.0-e0101l02
- version/hp intelligent management center/5.1-e0101p01