Remote Cross-Site Scripting Vulnerability in HPE OneView
CVE-2022-23706
6.1MEDIUM
What is CVE-2022-23706?
A remote cross-site scripting (XSS) vulnerability was found in HPE OneView, specifically in versions prior to 7.0. This flaw could allow an attacker to execute arbitrary scripts in the context of a user’s session, potentially compromising sensitive data and user interactions. HPE has released a software update to address this vulnerability, emphasizing the importance of keeping systems up-to-date to mitigate security risks.
Affected Version(s)
HPE OneView Prior to 7.0