CVE-2009-4568
UnknownEPSS 1.65%
Last modified
CVE-2009-4568 is a vulnerability of currently unknown severity. Cross-site scripting (XSS) vulnerability in Webmin before 1.500 and Usermin before 1.430 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.. EPSS estimates a 1.65% chance of exploitation in the next 30 days.
Description
Cross-site scripting (XSS) vulnerability in Webmin before 1.500 and Usermin before 1.430 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.
Metrics
Weakness Enumeration
Affected Software
| Vendor | Product | Versions |
|---|---|---|
| Webmin | Usermin | <= 1.32 |
| Webmin | Usermin | 0.4 |
| Webmin | Usermin | 0.5 |
| Webmin | Usermin | 0.6 |
| Webmin | Usermin | 0.7 |
| Webmin | Usermin | 0.8 |
| Webmin | Usermin | 0.9 |
| Webmin | Usermin | 0.91 |
| Webmin | Usermin | 0.92 |
| Webmin | Usermin | 0.93 |
| Webmin | Usermin | 0.94 |
| Webmin | Usermin | 0.95 |
| Webmin | Usermin | 0.96 |
| Webmin | Usermin | 0.97 |
| Webmin | Usermin | 0.98 |
| Webmin | Usermin | 0.99 |
| Webmin | Usermin | 1.000 |
| Webmin | Usermin | 1.3 |
| Webmin | Usermin | 1.010 |
| Webmin | Usermin | 1.020 |
| Webmin | Usermin | 1.030 |
| Webmin | Usermin | 1.040 |
| Webmin | Usermin | 1.051 |
| Webmin | Usermin | 1.060 |
| Webmin | Usermin | 1.070 |
| Webmin | Usermin | 1.080 |
| Webmin | Usermin | 1.090 |
| Webmin | Usermin | 1.100 |
| Webmin | Usermin | 1.110 |
| Webmin | Usermin | 1.120 |
| Webmin | Usermin | 1.130 |
| Webmin | Usermin | 1.140 |
| Webmin | Usermin | 1.150 |
| Webmin | Usermin | 1.210 |
| Webmin | Usermin | 1.220 |
| Webmin | Usermin | 1.230 |
| Webmin | Usermin | 1.240 |
| Webmin | Usermin | 1.250 |
| Webmin | Usermin | 1.260 |
| Webmin | Usermin | 1.270 |
| Webmin | Usermin | 1.280 |
| Webmin | Webmin | <= 1.390 |
| Webmin | Webmin | 0.1 |
| Webmin | Webmin | 0.2 |
| Webmin | Webmin | 0.3 |
| Webmin | Webmin | 0.4 |
| Webmin | Webmin | 0.5 |
| Webmin | Webmin | 0.6 |
| Webmin | Webmin | 0.7 |
| Webmin | Webmin | 0.21 |
Showing 50 of 115 affected configurations. See NVD for the full list.
References
- http://secunia.com/advisories/37648Vendor Advisory
- http://www.vupen.com/english/advisories/2009/3457Patch, Vendor Advisory
- http://www.webmin.com/security.htmlPatch, Vendor Advisory
- http://secunia.com/advisories/37648Vendor Advisory
- http://www.vupen.com/english/advisories/2009/3457Patch, Vendor Advisory
- http://www.webmin.com/security.htmlPatch, Vendor Advisory
Timeline
- Published
- Last Modified
- Status
- Modified
Frequently Asked Questions
What is CVE-2009-4568?
Cross-site scripting (XSS) vulnerability in Webmin before 1.500 and Usermin before 1.430 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.
How severe is CVE-2009-4568?
Severity scoring for CVE-2009-4568 is pending analysis. The EPSS model estimates a 1.65% probability of exploitation in the next 30 days.
How do I fix CVE-2009-4568?
Check the vendor references and advisories linked above for patched versions and mitigation guidance. You can also run a Strix scan to test if your systems are affected.
Are you affected by CVE-2009-4568?
Run a free Strix scan to check your systems for this vulnerability.
Scan your code nowSource: NVD / NIST