Cross-Site Scripting Vulnerabilities in Micro Focus Novell Service Desk
CVE-2016-1596
5.4MEDIUM
Summary
Micro Focus Novell Service Desk is susceptible to multiple cross-site scripting (XSS) vulnerabilities that allow remote authenticated users to inject malicious web scripts or HTML. This can occur through various parameters such as user name and client details, posing significant risks to web application security. Organizations using affected versions should apply patches and implement security measures to safeguard against these injection attacks.
References
CVSS V3.1
Score:
5.4
Severity:
MEDIUM
Confidentiality:
Low
Integrity:
Low
Availability:
Low
Attack Vector:
Network
Attack Complexity:
Low
Privileges Required:
Low
User Interaction:
Required
Scope:
Changed
Timeline
Vulnerability published
Vulnerability Reserved