CVE-2014-0330

Currently unrated

Key Information:

Vendor
Dell
Status
Kace K1000 Systems Management Appliance Software
Kace K1000 Systems Management Appliance
Vendor
CVE Published:
6 February 2014

Summary

Cross-site scripting (XSS) vulnerability in adminui/user_list.php on the Dell KACE K1000 management appliance 5.5.90545 allows remote attackers to inject arbitrary web script or HTML via the LABEL_ID parameter.

References

http://www.securityfocus.com/bid/65333
vdb-entryx_refsource_BID
http://osvdb.org/102855
vdb-entryx_refsource_OSVDB
https://exchange.xforce.ibmcloud.com/vulnerabilities/90954
vdb-entryx_refsource_XF

Timeline

  • Vulnerability published

  • Vulnerability Reserved

.