Cross-Site Scripting Vulnerability in HP Operations Orchestration
CVE-2013-6191

Currently unrated

Key Information:

Vendor: HP
Status: Operations Orchestration
Vendor: CVE Published:; 17 December 2013

Summary

An XSS vulnerability exists in HP Operations Orchestration versions prior to 9, which allows remote attackers to inject arbitrary web scripts or HTML. This weakness can be exploited through various unspecified vectors, posing risks to the confidentiality and integrity of the application and its users.

References

https://h20564.www2.hp.com/portal/site/hpsc/public/kb/doc...

vendor-advisoryx_refsource_HP

https://h20564.www2.hp.com/portal/site/hpsc/public/kb/doc...

vendor-advisoryx_refsource_HP

http://www.securitytracker.com/id/1029496

vdb-entryx_refsource_SECTRACK

Timeline

Vulnerability published
Dec 17, 2013
Vulnerability Reserved
Oct 21, 2013