CVE-2017-7438

CVSS 4.6 - MEDIUM
Description

NetIQ Privileged Account Manager before 3.1 Patch Update 3 allowed cross site scripting attacks via javascript DOM modification using the supplied cookie parameter.

Affected Products
3
Vendor Product Version
netiq privileged_account_manager All versions
netiq privileged_account_manager 3.1
netiq privileged_account_manager 3.1
References
https://bugzilla.suse.com/show_bug.cgi?id=1001355
https://www.netiq.com/documentation/privileged-acc...
https://bugzilla.suse.com/show_bug.cgi?id=1001355
https://www.netiq.com/documentation/privileged-acc...
Weakness Types
CWE-79 CWE-79
CVE Information
CVE ID:
CVE-2017-7438
Published:
2018-03-02
Modified:
2024-11-21
CVSS Score:
4.6
Severity:
MEDIUM
Vector:
CVSS:3.0/AV:N/AC:L/PR:L/UI:R/S:U/C:L/I:L/A:N
Affected Vendors
netiq
Quick Actions
View on NVD Find Similar CVEs
CVSS Severity Scale
0.0 - 3.9 LOW
4.0 - 6.9 MEDIUM
7.0 - 8.9 HIGH
9.0 - 10.0 CRITICAL