XSS in Dell Openmanage_server_administrator

CVE-2012-6272

Multiple cross-site scripting (XSS) vulnerabilities in Dell OpenManage Server Administrator 6.5.0.1, 7.0.0.1, and 7.1.0.1 allow remote attackers to inject arbitrary web script or HTML via the topic parameter to html/index_main.htm in (1) h…

Vulnerability class: XSS (Cross-Site Scripting)

EPSS: 0.028 (84.8th percentile) — read the EPSS interpretation.

Affected products

Weakness classification (CWE)

References

  • cret@cert.org (US Government Resource, x_refsource_CERT-VN, third-party-advisory)