Novell iManager 2.7.x before 2.7 SP7 Patch 10 HF1 and NetIQ iManager 3.x before 3.0.3.1 have a persistent XSS vulnerability in Framework.
References
Link | Resource |
---|---|
https://www.novell.com/support/kb/doc.php?id=7010166 | Release Notes Vendor Advisory |
https://www.netiq.com/support/kb/doc.php?id=7016795 | Release Notes Vendor Advisory |
https://dl.netiq.com/Download?buildid=wpS1UqIlx-o~ | Release Notes Vendor Advisory |
https://dl.netiq.com/Download?buildid=24FxpmqdThE~ | Release Notes Vendor Advisory |
https://bugzilla.novell.com/show_bug.cgi?id=1030691 | Permissions Required |
https://bugzilla.novell.com/show_bug.cgi?id=1024959 | Permissions Required |
Configurations
Configuration 1 (hide)
|
Configuration 2 (hide)
|
Information
Published : 2017-05-02 22:59
Updated : 2017-05-12 11:27
NVD link : CVE-2017-7430
Mitre link : CVE-2017-7430
JSON object : View
CWE
CWE-79
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')
Products Affected
novell
- imanager
netiq
- imanager