CVE-2014-0330CVE-2014-0330

Affected configuration(s):

cpe:/a:dell:kace_k1000_systems_management_appliance_software:5.5.90545
cpe:/h:dell:kace_k1000_systems_management_appliance:-

Date published: 2014-02-06T18:55:03.993-05:00

Date last modified: 2014-02-07T13:09:12.020-05:00

CVSS Score: 4.3

Principal attack vector: NETWORK

Complexity:  MEDIUM

Reference URL: http://www.kb.cert.org/vuls/id/813382

Summary: Cross-site scripting (XSS) vulnerability in adminui/user_list.php on the Dell KACE K1000 management appliance 5.5.90545 allows remote attackers to inject arbitrary web script or HTML via the LABEL_ID parameter.

CategoriesUncategorised

Leave a Reply

Your email address will not be published. Required fields are marked *

This site uses Akismet to reduce spam. Learn how your comment data is processed.