Motive Home Device Manager
Approved changes feed: RSS · Atom
cpe:2.3:a:alcatel-lucent:motive_home_device_manager:*:*:*:*:*:*:*:*
part: a version: * update: *
| Vendor | Alcatel Lucent (cd3e8d12-5838-5834-947c-31bf8161e901) |
|---|---|
| Product | Motive Home Device Manager (17bb827f-d7d0-5fa6-8446-c4b3b205a00a) |
| Edition | * |
| Language | * |
| Software edition | * |
| Target software | * |
| Target hardware | * |
| Other | * |
| Notes | Imported from gcve-enriched-dumps CVE data |
PURL mappings
| PURL | Source | Last updated |
|---|---|---|
| No PURL mappings for this CPE yet. | ||
Vulnerability references
| Identifier | cpeApplicability | Submitted | db.gcve.eu details | Rationale |
|---|---|---|---|---|
CVE:CVE-2015-8687 |
vulnerable | 2026-06-03 14:35:12.717042 |
Details available
Multiple cross-site scripting (XSS) vulnerabilities in the Management Console in Alcatel-Lucent Motive Home Device Manager (HDM) before 4.2 allow remote attackers to inject arbitrary web script or HTML via the (1) deviceTypeID parameter to DeviceType/getDeviceType.do; the (2) policyActionClass or (3) policyActionName parameter to PolicyAction/findPolicyActions.do; the deviceID parameter to (4) SingleDeviceMgmt/getDevice.do or (5) device/editDevice.do; the operation parameter to (6) ajax.do or (7) xmlHttp.do; or the (8) policyAction, (9) policyClass, or (10) policyName parameter to policy/findPolicies.do.
Published: 2017-03-23T20:00:00.000Z
Updated: 2024-08-06T08:29:20.966Z Reference links |
Imported from gcve-enriched-dumps CVE data |
Contribute
You can submit an edit proposal for this CPE entry or suggest a related product/vendor addition using the action button above.