CVE-2014-0330

Cross-site scripting (XSS) vulnerability in adminui/user_list.php on the Dell KACE K1000 management appliance 5.5.90545 allows remote attackers to inject arbitrary web script or HTML via the LABEL_ID parameter.
Advertisement

NeevaHost hosting service

Configurations

Configuration 1 (hide)

AND
cpe:2.3:a:dell:kace_k1000_systems_management_appliance_software:5.5.90545:*:*:*:*:*:*:*
cpe:2.3:h:dell:kace_k1000_systems_management_appliance:-:*:*:*:*:*:*:*

Information

Published : 2014-02-06 15:55

Updated : 2018-01-02 18:29


NVD link : CVE-2014-0330

Mitre link : CVE-2014-0330


JSON object : View

CWE
CWE-79

Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')

Advertisement

dedicated server usa

Products Affected

dell

  • kace_k1000_systems_management_appliance
  • kace_k1000_systems_management_appliance_software