CVE-2017-7438

NetIQ Privileged Account Manager is affected up to version 3.1 Patch Update 3. The vulnerability allows cross-site scripting by altering the JavaScript DOM via the cookie parameter, enabling injected scripts in authenticated sessions. Affected component/behavior is DOM manipulation leading to XSS...