Description
Unknown cross-site scripting (XSS) vulnerability in the web GUI in vHost before 3.10r1 has unknown impact and attack vectors.
Product(s):
- Chaogic Systems VHost 3.00r1
- Chaogic Systems VHost 3.00r2
- Chaogic Systems VHost 3.00r3
- Chaogic Systems VHost 3.00r4
- Chaogic Systems VHost 3.00r5
- Chaogic Systems VHost 3.00r6
- Chaogic Systems VHost 3.01r1
- Chaogic Systems VHost 3.02r1
- Chaogic Systems VHost 3.02r2
- Chaogic Systems VHost 3.03r1
- Chaogic Systems VHost 3.04r1
- Chaogic Systems VHost 3.05r1
- Chaogic Systems VHost 3.05r2
- Chaogic Systems VHost 3.05r3
- Chaogic Systems VHost 3.05r4
- Chaogic Systems VHost 3.05r5
- Chaogic Systems VHost 3.05r6
Question to Ask Vendors:
- Can you confirm whether your systems are affected by CVE-2004-2278, and if so, what steps are you currently taking to mitigate this vulnerability?
- What is your estimated timeline for fully resolving CVE-2004-2278 in your products or services, and how will you communicate updates on this issue to us as your customer?
Recommended Actions:
- Check out the advisory links provided below.