CVE-2015-10010

Description

A vulnerability was found in OpenDNS OpenResolve. It has been rated as problematic. Affected by this issue is the function get of the file resolverapi/endpoints.py of the component API. The manipulation leads to cross site scripting. The attack may be launched remotely. The complexity of an attack is rather high. The exploitation is known to be difficult. The name of the patch is c680170d5583cd9342fe1af43001fe8b2b8004dd. It is recommended to apply a patch to fix this issue. The identifier of this vulnerability is VDB-217196.

CVSS Version 3.1
CVSS Version 3.0
CVSS Version 2.0

nvd
CVE ID: CVE-2015-10010
Base Score: 6.1
Base Severity: MEDIUM
Vector String:CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N
Impact Score: 2.7
Exploitability Score: 2.8

vuldb
CVE ID: CVE-2015-10010
Base Score: 3.1
Base Severity: LOW
Vector String:CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:N/I:L/A:N
Impact Score: 1.4
Exploitability Score: 1.6

vuldb
CVE ID: CVE-2015-10010
Base Score: 3.1
Base Severity: LOW
Vector String:CVSS:3.0/AV:N/AC:H/PR:N/UI:R/S:U/C:N/I:L/A:N

vuldb
CVE ID: CVE-2015-10010
Base Score: 2.6
Base Severity: LOW
Vector String:AV:N/AC:H/Au:N/C:N/I:P/A:N

Refrence: NVD MITRE

Description​

Description