📦

electronic_documentation

Vendor: nokia

Actively Exploited 0 CISA KEV List

PoC / Exploits 3 Code Available

Total RCEs 0 Remote Access

Total CVEs 3 Total Indexed

Avg. EPSS 1.53% Exploit Prob.

Latest CVE CVE-2003-0801 Oct 06

Security Vulnerability Index

Page 1 / 1

4.3 CVSS

CVE-2003-0801

Exploit Found

Cross-site scripting (XSS) vulnerability in Nokia Electronic Documentation (NED) 5.0 allows remote attackers to execute arbitrary web script and steal cookies via a URL to the docs/ directory that contains the script.

EPSS: 0.31%

Severity: MEDIUM

Oct 06, 2003

5.0 CVSS

CVE-2003-0802

Exploit Found

Nokia Electronic Documentation (NED) 5.0 allows remote attackers to obtain a directory listing of the WebLogic web root, and the physical path of the NED server, via a "retrieve" action with a location parameter of . (dot).

EPSS: 2.27%

Severity: MEDIUM

Oct 06, 2003

7.5 CVSS

CVE-2003-0803

Exploit Found

Nokia Electronic Documentation (NED) 5.0 allows remote attackers to use NED as an open HTTP proxy via a URL in the location parameter, which NED accesses and returns to the user.

EPSS: 2.01%

Severity: HIGH

Oct 06, 2003

Displaying 3 of 3 Total Entries

Total 1 Sections