Cross-Site Scripting Flaw in HP Network Node Manager i Software
CVE-2016-4400
5.4MEDIUM
What is CVE-2016-4400?
A vulnerability exists in HP's Network Node Manager i Software that allows attackers to execute arbitrary scripts in the context of a trusted user's session. This cross-site scripting (XSS) flaw can enable malicious actors to compromise user interactions with the application, potentially leading to unauthorized actions or data exposure. Users of affected versions are encouraged to apply relevant patches and updates to mitigate the risks associated with this security issue.
Affected Version(s)
HP Network Node Manager (NNMi) 10.00, 10.01 (patch1), 10.01 (patch 2), 10.10