Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in OpenText™ Operations Agent.
The XSS vulnerability could allow an attacker with local admin permissions to manipulate the content of the internal status page of the Agent on the local system.
This issue affects Operations Agent: 12.20, 12.21, 12.22, 12.23, 12.24, 12.25, 12.26.
CVSS
No CVSS.
References
Configurations
No configuration.
History
29 Oct 2024, 14:34
Type | Values Removed | Values Added |
---|---|---|
Summary |
|
28 Oct 2024, 19:15
Type | Values Removed | Values Added |
---|---|---|
New CVE |
Information
Published : 2024-10-28 19:15
Updated : 2024-10-29 14:34
NVD link : CVE-2024-5532
Mitre link : CVE-2024-5532
CVE.ORG link : CVE-2024-5532
JSON object : View
Products Affected
No product.
CWE
CWE-79
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')