CVE-2018-6495
6.3
CVSS:3.0/AV:N/AC:L/PR:L/UI:R/S:U/C:L/I:H/A:N
Summary
Cross-Site Scripting (XSS) in Micro Focus Universal CMDB, version 10.20, 10.21, 10.22, 10.30, 10.31, 10.32, 10.33, 11.0, CMS, version 4.10, 4.11, 4.12, 4.13, 4.14, 4.15.1 and Micro Focus UCMDB Browser, version 4.10, 4.11, 4.12, 4.13, 4.14, 4.15.1. This vulnerability could be remotely exploited to allow Cross-Site Scripting (XSS).
Affected Software
| Vendor | Product | Version Range | Status |
|---|---|---|---|
| Micro Focus | UCMDB | 10.20, 10.21, 10.22, 10.30, 10.31, 10.32, 10.33, 11.0 | affected |
| Micro Focus | CMS Server 2018.05 | 4.10, 4.11, 4.12, 4.13, 4.14, 4.15.1 | affected |
| Micro Focus | UCMDB Browser | 4.10, 4.11, 4.12, 4.13, 4.14, 4.15.1 | affected |
Weaknesses
- Cross-Site Scripting (XSS)
ADP Enrichment
CVE Program Container
Additional References
- http://www.securitytracker.com/id/1040970
- https://softwaresupport.softwaregrp.com/document/-/facetsearch/document/KM03164778
References
- http://www.securitytracker.com/id/1040970
- https://softwaresupport.softwaregrp.com/document/-/facetsearch/document/KM03164778
Feedback
Was this page helpful?
Glad to hear it! Please tell us how we can improve.
Sorry to hear that. Please tell us how we can improve.