CVSS v2.0 Severity and Metrics:
Base Score:
5.1 MEDIUM
Vector:
(AV:N/AC:H/Au:N/C:P/I:P/A:P)
(V2 legend)
Impact Subscore:
6.4
Exploitability Subscore:
4.9
Access Vector (AV):
Network
Access Complexity (AC):
High
Authentication (AU):
None
Confidentiality (C):
Partial
Integrity (I):
Partial
Availability (A):
Partial
Additional Information:
Victim must voluntarily interact with attack mechanism
Provides user account access
Allows unauthorized disclosure of information
Allows disruption of service