Cross-Site Scripting Vulnerability in Microsoft System Center Operations Manager
CVE-2013-0010

Currently unrated

Key Information:

Vendor

Microsoft

Vendor
CVE Published:
9 January 2013

What is CVE-2013-0010?

A cross-site scripting (XSS) vulnerability exists in Microsoft System Center Operations Manager 2007 SP1 and R2, permitting remote attackers to inject arbitrary web scripts or HTML through specially crafted input. This vulnerability can be exploited to execute malicious scripts in users' browsers, which may lead to unauthorized access to sensitive information or the execution of unwanted actions within the context of the user session. It highlights the importance of securing web interfaces against user input manipulations.

References

EPSS Score

24% chance of being exploited in the next 30 days.

Timeline

  • Vulnerability published

  • Vulnerability Reserved

.