Dell OpenManage Server Administrator version 188.8.131.52 and earlier contains a DOM-based cross-site scripting vulnerability.
CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')
Dell OpenManage Server Administrator version 7.1.01 and earlier contains a DOM-based cross-site scripting vulnerability.
A remote attacker may be able to execute arbitrary script in the context of the end-user's browser session.
Apply an update
The vulnerability reporter has confirmed that Dell OpenManage Server Administrator 184.108.40.206, 220.127.116.11 and 18.104.22.168 are affected by this vulnerability.
Thanks to Tenable Network Security for reporting this vulnerability.
This document was written by Michael Orlando.
|Date First Published:||2013-01-09|
|Date Last Updated:||2015-09-17 19:55 UTC|