Lucene search
K

115 matches found

OSV
OSV
added 2021/12/07 1:15 p.m.5 views

CVE-2021-40094

A DOM-based XSS vulnerability affects SquaredUp for SCOM 5.2.1.6654. If successfully exploited, this vulnerability may allow attackers to inject malicious code into a user's device...

5.4CVSS6.1AI score0.00458EPSS
Exploits0References2
NVD
NVD
added 2021/12/07 1:15 p.m.21 views

CVE-2021-40093

A cross-site scripting XSS vulnerability in integration configuration in SquaredUp for SCOM 5.2.1.6654 allows remote attackers to inject arbitrary web script or HTML via dashboard actions...

5.4CVSS0.00585EPSS
Exploits0References2
NVD
NVD
added 2021/12/07 1:15 p.m.17 views

CVE-2021-40096

A cross-site scripting XSS vulnerability in integration configuration in SquaredUp for SCOM 5.2.1.6654 allows remote attackers to inject arbitrary web script or HTML via modification of the authorisationUrl in some integration configurations...

5.4CVSS0.00742EPSS
Exploits0References2
OSV
OSV
added 2021/12/07 1:15 p.m.5 views

CVE-2021-40096

A cross-site scripting XSS vulnerability in integration configuration in SquaredUp for SCOM 5.2.1.6654 allows remote attackers to inject arbitrary web script or HTML via modification of the authorisationUrl in some integration configurations...

5.4CVSS6.1AI score0.00742EPSS
Exploits0References2
OSV
OSV
added 2021/12/07 1:15 p.m.5 views

CVE-2021-40092

A cross-site scripting XSS vulnerability in Image Tile in SquaredUp for SCOM 5.2.1.6654 allows remote attackers to inject arbitrary web script or HTML via an SVG file...

5.4CVSS6.1AI score0.00585EPSS
Exploits0References2
OSV
OSV
added 2021/12/07 1:15 p.m.8 views

CVE-2021-40093

A cross-site scripting XSS vulnerability in integration configuration in SquaredUp for SCOM 5.2.1.6654 allows remote attackers to inject arbitrary web script or HTML via dashboard actions...

5.4CVSS6.1AI score0.00585EPSS
Exploits0References2
NVD
NVD
added 2021/12/07 1:15 p.m.21 views

CVE-2021-40094

A DOM-based XSS vulnerability affects SquaredUp for SCOM 5.2.1.6654. If successfully exploited, this vulnerability may allow attackers to inject malicious code into a user's device...

5.4CVSS0.00458EPSS
Exploits0References2
NVD
NVD
added 2021/12/07 1:15 p.m.19 views

CVE-2021-40095

An issue was discovered in SquaredUp for SCOM 5.2.1.6654. The Download Log feature in System / Maintenance was susceptible to a local file inclusion vulnerability when processing remote input in the log files downloaded by an authenticated administrator user, leading to the ability to read...

4.9CVSS0.00981EPSS
Exploits0References2
Prion
Prion
added 2021/12/07 1:15 p.m.15 views

Design/Logic Flaw

A DOM-based XSS vulnerability affects SquaredUp for SCOM 5.2.1.6654. If successfully exploited, this vulnerability may allow attackers to inject malicious code into a user's device...

3.5CVSS5.3AI score0.00458EPSS
Exploits0References2Affected Software1
Prion
Prion
added 2021/12/07 1:15 p.m.10 views

Design/Logic Flaw

An issue was discovered in SquaredUp for SCOM 5.2.1.6654. The Download Log feature in System / Maintenance was susceptible to a local file inclusion vulnerability when processing remote input in the log files downloaded by an authenticated administrator user, leading to the ability to read...

4CVSS5.1AI score0.00981EPSS
Exploits0References2Affected Software1
Prion
Prion
added 2021/12/07 1:15 p.m.15 views

Cross site scripting

A cross-site scripting XSS vulnerability in integration configuration in SquaredUp for SCOM 5.2.1.6654 allows remote attackers to inject arbitrary web script or HTML via modification of the authorisationUrl in some integration configurations...

3.5CVSS5.3AI score0.00742EPSS
Exploits0References2Affected Software1
Prion
Prion
added 2021/12/07 1:15 p.m.21 views

Cross site scripting

A cross-site scripting XSS vulnerability in integration configuration in SquaredUp for SCOM 5.2.1.6654 allows remote attackers to inject arbitrary web script or HTML via dashboard actions...

3.5CVSS5.3AI score0.00585EPSS
Exploits0References2Affected Software1
CVE
CVE
added 2021/12/07 12:58 p.m.40 views

CVE-2021-40096

CVE-2021-40096 : SquaredUp for SCOM 5.2.1.6654 contains a cross-site scripting (XSS) issue in the integration configuration. The vulnerability allows remote attackers to inject arbitrary web script or HTML by modifying the authorisationUrl in some integration configurations. The description from ...

5.4CVSS5.3AI score0.00742EPSS
Exploits0References2Affected Software1
Cvelist
Cvelist
added 2021/12/07 12:58 p.m.19 views

CVE-2021-40096

A cross-site scripting XSS vulnerability in integration configuration in SquaredUp for SCOM 5.2.1.6654 allows remote attackers to inject arbitrary web script or HTML via modification of the authorisationUrl in some integration configurations...

5.5AI score0.00742EPSS
Exploits0References2
Cvelist
Cvelist
added 2021/12/07 12:54 p.m.19 views

CVE-2021-40095

An issue was discovered in SquaredUp for SCOM 5.2.1.6654. The Download Log feature in System / Maintenance was susceptible to a local file inclusion vulnerability when processing remote input in the log files downloaded by an authenticated administrator user, leading to the ability to read...

5.4AI score0.00981EPSS
Exploits0References2
CVE
CVE
added 2021/12/07 12:54 p.m.40 views

CVE-2021-40095

CVE-2021-40095 affects SquaredUp for SCOM 5.2.1.6654. The issue is a local file inclusion in the Download Log feature under System / Maintenance, triggered when processing remote input in the log files downloaded by an authenticated administrator user. This vulnerability enables reading arbitrary...

4.9CVSS5AI score0.00981EPSS
Exploits0References2Affected Software1
Cvelist
Cvelist
added 2021/12/07 12:51 p.m.24 views

CVE-2021-40094

A DOM-based XSS vulnerability affects SquaredUp for SCOM 5.2.1.6654. If successfully exploited, this vulnerability may allow attackers to inject malicious code into a user's device...

5.5AI score0.00458EPSS
Exploits0References2
CVE
CVE
added 2021/12/07 12:51 p.m.40 views

CVE-2021-40094

SquaredUp for SCOM 5.2.1.6654 is affected by a DOM-based cross-site scripting vulnerability. The issue is described across multiple sources as a DOM-based XSS that could allow an attacker to inject malicious code into a user’s device if successfully exploited. The vulnerability is associated with...

5.4CVSS5.3AI score0.00458EPSS
Exploits0References2Affected Software1
Cvelist
Cvelist
added 2021/12/07 12:48 p.m.25 views

CVE-2021-40093

A cross-site scripting XSS vulnerability in integration configuration in SquaredUp for SCOM 5.2.1.6654 allows remote attackers to inject arbitrary web script or HTML via dashboard actions...

5.5AI score0.00585EPSS
Exploits0References2
CVE
CVE
added 2021/12/07 12:48 p.m.44 views

CVE-2021-40093

CVE-2021-40093 concerns a cross-site scripting (XSS) vulnerability in the integration configuration of SquaredUp for SCOM 5.2.1.6654 . The exposed issue allows remote attackers to inject arbitrary web script or HTML via dashboard actions. The available documents identify the affected product and ...

5.4CVSS5.3AI score0.00585EPSS
Exploits0References2Affected Software1
Rows per page
Query Builder