CVE-2008-3482

Cross-site scripting (XSS) vulnerability in the error page feature in Panasonic Network Camera BL-C111, BL-C131, BB-HCM511, BB-HCM531, BB-HCM580, BB-HCM581, BB-HCM527, and BB-HCM515 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.

Published : 2008-08-05 20:41 Updated : 2017-08-08 01:31

4.3
CVSS Score More info
Score 4.3 / 10
4.3
Vendor Product Version URI
Panasonic Bb Hcm580 3.21 cpe:/h:panasonic:bb_hcm580:3.21:r00
Panasonic Bb Hcm581 3.21 cpe:/h:panasonic:bb_hcm581:3.21:r00
Panasonic Bb Hcm511 3.20 cpe:/h:panasonic:bb_hcm511:3.20:r01
Panasonic Bb Hcm515 3.20 cpe:/h:panasonic:bb_hcm515:3.20:r01
Panasonic Bb Hcm527 3.30 cpe:/h:panasonic:bb_hcm527:3.30:r01
Panasonic Bb Hcm531 3.20 cpe:/h:panasonic:bb_hcm531:3.20:r01
Panasonic Bl C111 3.14 cpe:/h:panasonic:bl_c111:3.14:r02
Panasonic Bl C131 3.14 cpe:/h:panasonic:bl_c131:3.14:r03
  1. Panasonic (8) Search CVE
    1. Bb Hcm527 (1) Search CVE
      1. 3.30
    2. Bb Hcm531 (1) Search CVE
      1. 3.20
    3. Bb Hcm581 (1) Search CVE
      1. 3.21
    4. Bb Hcm515 (1) Search CVE
      1. 3.20
    5. Bb Hcm511 (1) Search CVE
      1. 3.20
    6. Bl C131 (1) Search CVE
      1. 3.14
    7. Bb Hcm580 (1) Search CVE
      1. 3.21
    8. Bl C111 (1) Search CVE
      1. 3.14

CWE

ID Name Description Links
CWE-79 Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') The software does not neutralize or incorrectly neutralizes user-controllable input before it is placed in output that is used as a web page that is served to other users. CVE

History of changes

Date Event
2017-08-08 05:46
2008-08-05 20:41

New CVE