4 matches found
CVE-2019-9538
: Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in the LDAP cbURL parameter of Telos Automated Message Handling System allows a remote attacker to inject arbitrary script into an AMHS session. This issue affects: Telos Automated Message Handling...
CVE-2019-9538
: Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in the LDAP cbURL parameter of Telos Automated Message Handling System allows a remote attacker to inject arbitrary script into an AMHS session. This issue affects: Telos Automated Message Handling...
CVE-2019-9538
CVE-2019-9538 affects Telos Automated Message Handling System (AMHS). A Cross-Site Scripting vulnerability exists in the LDAP cbURL parameter, allowing an attacker to inject arbitrary script into an AMHS session. Affected versions are AMHS prior to 4.1.5.5. CVSS data in the records shows CVSS v3....
Telos Automated Message Handling System contains multiple vulnerabilities
Overview Telos Automated Message Handling System AMHS contains multiple XSS vulnerabilities and a database information disclosure vulnerability. Description Telos AMHS is a web-based messaging system that supports DoD and Intelligence Community IC security marking requirements. AMHS versions prio...