CVE-2017-7438

Summary

NetIQ Privileged Account Manager before 3.1 Patch Update 3 allowed cross site scripting attacks via javascript DOM modification using the supplied cookie parameter.

Affected Software

VendorProductVersion RangeStatus
NetIQPrivileged Account Managerunspecified < 3.1 Patch Update 3affected

Weaknesses

  • cross site scripting attack
  • CWE-79: CWE-79

ADP Enrichment

CVE Program Container

Additional References

References