CVE-2017-7437

Summary

NetIQ Privileged Account Manager before 3.1 Patch Update 3 allowed cross site scripting attacks via the "type" and "account" parameters of json requests.

Affected Software

VendorProductVersion RangeStatus
NetIQPrivileged Account Managerunspecified < 3.1 Patch Update 3affected

Weaknesses

  • cross site scripting attack
  • CWE-79: CWE-79

ADP Enrichment

CVE Program Container

Additional References

References