2 matches found
CVE-2018-0908
Microsoft Identity Manager 2016 SP1 allows an attacker to gain elevated privileges when it does not properly sanitize a specially crafted attribute value being displayed to a user on an affected MIM 2016 server, aka "Microsoft Identity Manager XSS Elevation of Privilege Vulnerability."...
CVE-2018-0908
Microsoft Identity Manager 2016 SP1 is affected by CVE-2018-0908 (XSS Elevation of Privilege) where improperly sanitized attribute values displayed on MIM 2016 Server enable privilege escalation. The issue affects MIM 2016 SP1 Service and Portal components and is mitigated by applying the securit...