VulnerableCode Vulnerability Details - VCID-shmb-1ncq-wbgp

Search for vulnerabilities

Vulnerability details: VCID-shmb-1ncq-wbgp

Essentials
Severities (11)
References (12)
Severity details (1)
Exploits (0)
EPSS
History (1)

Vulnerability ID	VCID-shmb-1ncq-wbgp
Aliases	CVE-2005-3352
Summary	A flaw in mod_imap when using the Referer directive with image maps. In certain site configurations a remote attacker could perform a cross-site scripting attack if a victim can be forced to visit a malicious URL using certain web browsers.
Status	Published
Exploitability	0.5
Weighted Severity	4.8
Risk	2.4
Affected and Fixed Packages	Package Details

Weaknesses (1)

CWE-79

Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')

System	Score	Found at
epss	0.45233	https://api.first.org/data/v1/epss?cve=CVE-2005-3352
epss	0.45233	https://api.first.org/data/v1/epss?cve=CVE-2005-3352
epss	0.45233	https://api.first.org/data/v1/epss?cve=CVE-2005-3352
epss	0.45233	https://api.first.org/data/v1/epss?cve=CVE-2005-3352
epss	0.45233	https://api.first.org/data/v1/epss?cve=CVE-2005-3352
epss	0.45233	https://api.first.org/data/v1/epss?cve=CVE-2005-3352
epss	0.45233	https://api.first.org/data/v1/epss?cve=CVE-2005-3352
epss	0.45233	https://api.first.org/data/v1/epss?cve=CVE-2005-3352
epss	0.6818	https://api.first.org/data/v1/epss?cve=CVE-2005-3352
epss	0.6818	https://api.first.org/data/v1/epss?cve=CVE-2005-3352
apache_httpd	moderate	https://httpd.apache.org/security/json/CVE-2005-3352.json

Reference id	Reference type	URL
		https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2005-3352.json
		https://api.first.org/data/v1/epss?cve=CVE-2005-3352
		https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2005-3352
343466		https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=343466
430524		https://bugzilla.redhat.com/show_bug.cgi?id=430524
CVE-2005-3352		https://httpd.apache.org/security/json/CVE-2005-3352.json
RHSA-2005:882		https://access.redhat.com/errata/RHSA-2005:882
RHSA-2006:0158		https://access.redhat.com/errata/RHSA-2006:0158
RHSA-2006:0159		https://access.redhat.com/errata/RHSA-2006:0159
RHSA-2006:0692		https://access.redhat.com/errata/RHSA-2006:0692
RHSA-2008:0523		https://access.redhat.com/errata/RHSA-2008:0523
USN-241-1		https://usn.ubuntu.com/241-1/

No exploits are available.

Exploit Prediction Scoring System (EPSS)

Percentile	0.9749
EPSS Score	0.45233
Published At	Aug. 10, 2025, 12:55 p.m.

Date	Actor	Action	Source	VulnerableCode Version
2025-07-31T08:28:43.610526+00:00	Apache HTTPD Importer	Import	https://httpd.apache.org/security/json/CVE-2005-3352.json	37.0.0