This CPE summary could be partial or incomplete. Please contact us for a detailed listing.
Summary
Summuary | |
---|---|
CPE Name | cpe:/a:homeseer:homeseer_hs2:2.5.0.20 |
Detail | |||
---|---|---|---|
Vendor | Homeseer | First view | 2011-12-14 |
Product | Homeseer hs2 | Last view | 2011-12-14 |
Version | 2.5.0.20 | Type | Application |
Edition | |||
Language | |||
Update | |||
CPE Product | cpe:/a:homeseer:homeseer_hs2 |
Activity : Overall
Related : CVE
Date | Alert | Access Vector | Access Complexity | Authentication | ||
---|---|---|---|---|---|---|
6.8 | 2011-12-14 | CVE-2011-4837 | Network | Medium | None Requ... | |
4.3 | 2011-12-14 | CVE-2011-4836 | Network | Medium | None Requ... | |
7.5 | 2011-12-14 | CVE-2011-4835 | Network | Low | None Requ... |
CWE : Common Weakness Enumeration
% | id | Name |
---|---|---|
33% (1) | CWE-352 | Cross-Site Request Forgery (CSRF) |
33% (1) | CWE-79 | Failure to Preserve Web Page Structure ('Cross-site Scripting') |
33% (1) | CWE-22 | Improper Limitation of a Pathname to a Restricted Directory ('Path ... |
Open Source Vulnerability Database (OSVDB)
id | Description |
---|---|
77589 | HomeSeer HS2 Web Interface/ctrl URL Admin Command CSRF |
77588 | HomeSeer HS2 Web Interface Log Viewer Page URI XSS |
77587 | HomeSeer HS2 Web Interface Traversal Arbitrary File Access |
OpenVAS Exploits
id | Description |
---|---|
2011-12-20 | Name : HomeSeer HS2 Web Interface Multiple Vulnerabilities File : nvt/secpod_homeseer_hs2_web_interface_mult_vuln.nasl |