This CPE summary could be partial or incomplete. Please contact us for a detailed listing.
Summary
| Summuary | |
|---|---|
| CPE Name | cpe:/a:homeseer:homeseer_hs2:2.5.0.20 |
| Detail | |||
|---|---|---|---|
| Vendor | Homeseer | First view | 2011-12-14 |
| Product | Homeseer hs2 | Last view | 2011-12-14 |
| Version | 2.5.0.20 | Type | Application |
| Edition | |||
| Language | |||
| Update | |||
| CPE Product | cpe:/a:homeseer:homeseer_hs2 | ||
Activity : Overall
Related : CVE
| Date | Alert | Access Vector | Access Complexity | Authentication | ||
|---|---|---|---|---|---|---|
| 6.8 | 2011-12-14 | CVE-2011-4837 | Network | Medium | None Requ... | |
| 4.3 | 2011-12-14 | CVE-2011-4836 | Network | Medium | None Requ... | |
| 7.5 | 2011-12-14 | CVE-2011-4835 | Network | Low | None Requ... |
CWE : Common Weakness Enumeration
| % | id | Name |
|---|---|---|
| 33% (1) | CWE-352 | Cross-Site Request Forgery (CSRF) |
| 33% (1) | CWE-79 | Failure to Preserve Web Page Structure ('Cross-site Scripting') |
| 33% (1) | CWE-22 | Improper Limitation of a Pathname to a Restricted Directory ('Path ... |
Open Source Vulnerability Database (OSVDB)
| id | Description |
|---|---|
| 77589 | HomeSeer HS2 Web Interface/ctrl URL Admin Command CSRF |
| 77588 | HomeSeer HS2 Web Interface Log Viewer Page URI XSS |
| 77587 | HomeSeer HS2 Web Interface Traversal Arbitrary File Access |
OpenVAS Exploits
| id | Description |
|---|---|
| 2011-12-20 | Name : HomeSeer HS2 Web Interface Multiple Vulnerabilities File : nvt/secpod_homeseer_hs2_web_interface_mult_vuln.nasl |
