Remote Cross Site Scripting Vulnerability in HP Business Service Management Software
CVE-2016-4392
5.4MEDIUM
What is CVE-2016-4392?
A remote cross site scripting vulnerability has been identified in HP Business Service Management software affecting versions 9.1x, 9.20, and 9.25IP1. This vulnerability allows attackers to inject malicious scripts into web applications viewed by users, potentially compromising sensitive information and enabling further attacks within the network. Organizations utilizing this software should take immediate action to mitigate risks.
Affected Version(s)
HP Business Service Manager v9.1x, v9.20 - v9.25IP1