Cross-Site Scripting Vulnerability in HP Service Manager WebTier and Windows Client
CVE-2013-6198

Currently unrated

What is CVE-2013-6198?

A cross-site scripting (XSS) vulnerability exists in multiple versions of HP Service Manager WebTier and Windows Client, allowing remote attackers to inject arbitrary web scripts or HTML. This flaw arises due to improper validation of user-supplied data, posing a significant risk as it can be exploited via various unspecified vectors, potentially compromising the security of user sessions and sensitive data.

References

Timeline

  • Vulnerability published

  • Vulnerability Reserved

.