Cross-Site Scripting Vulnerability in HPE Network Node Manager i Products

CVE-2016-2010

What is CVE-2016-2010?

A cross-site scripting (XSS) vulnerability exists in certain versions of HPE Network Node Manager i (NNMi) that allows remote authenticated users to insert malicious web scripts or HTML content. This vulnerability could be exploited via unspecified vectors, potentially leading to unauthorized actions within affected network management interfaces.

References