CVE-2012-2563 — MEDIUM (4.3)

Q: How severe is CVE-2012-2563?

CVE-2012-2563 has been rated MEDIUM with a CVSS base score of 4.3/10. Review the CVSS metrics above for detailed severity breakdown.

Q: Is there a patch for CVE-2012-2563?

Check the references section above for vendor advisories and patch information. Affected products include: Bloxx Web Filtering.

Vulnerability Description

Multiple cross-site scripting (XSS) vulnerabilities in Bloxx Web Filtering before 5.0.14 allow (1) remote attackers to inject arbitrary web script or HTML via web traffic that is examined within the Bloxx Reports component, and allow (2) remote authenticated administrators to inject arbitrary web script or HTML via vectors involving administrative menu functions.

CVSS Score

4.3

MEDIUM

AV:N/AC:M/Au:N/C:N/I:P/A:N

Confidentiality

NONE

Integrity

PARTIAL

Availability

NONE

Affected Products

Vendor	Product	Versions
Bloxx	Web Filtering	<= 5.0.13

Related Weaknesses (CWE)

CWE-79

References

http://www.kb.cert.org/vuls/id/722963US Government Resource
http://www.kb.cert.org/vuls/id/MAPG-8R9LBY
http://www.securityfocus.com/bid/53715
http://www.kb.cert.org/vuls/id/722963US Government Resource
http://www.kb.cert.org/vuls/id/MAPG-8R9LBY
http://www.securityfocus.com/bid/53715

FAQ

What is CVE-2012-2563?

CVE-2012-2563 is a vulnerability with a CVSS score of 4.3 (MEDIUM). Multiple cross-site scripting (XSS) vulnerabilities in Bloxx Web Filtering before 5.0.14 allow (1) remote attackers to inject arbitrary web script or HTML via web traffic that is examined within the B...

How severe is CVE-2012-2563?

CVE-2012-2563 has been rated MEDIUM with a CVSS base score of 4.3/10. Review the CVSS metrics above for detailed severity breakdown.

Is there a patch for CVE-2012-2563?

Check the references section above for vendor advisories and patch information. Affected products include: Bloxx Web Filtering.