Remote Cross-Site Scripting Vulnerability in HPE Operations Bridge Analytics
CVE-2017-5800
5.4MEDIUM
Summary
A Remote Cross-Site Scripting (XSS) vulnerability exists in HPE Operations Bridge Analytics version 3.0, allowing attackers to inject malicious scripts into web pages viewed by other users. Exploitation of this vulnerability can lead to unauthorized actions being executed in the context of the affected user's session, compromising sensitive data and user integrity. Organizations using this software must be aware of this risk and implement necessary security measures to protect against such attacks.
Affected Version(s)
Operations Bridge Analytics v3.0
References
CVSS V3.1
Score:
5.4
Severity:
MEDIUM
Confidentiality:
Low
Integrity:
Low
Availability:
Low
Attack Vector:
Network
Attack Complexity:
Low
Privileges Required:
Low
User Interaction:
Required
Scope:
Changed
Timeline
Vulnerability published
Vulnerability Reserved