CVE-2023-37522
The CVE-2023-37522 entry concerns HCL BigFix Bare OSD Metal Server WebUI version 311.19 or lower, where missing or insecure tags can allow a browser-exploiting XSS attacker to run malicious scripts in a user’s browser. Root cause: insecure/missing tags in the WebUI. Impact: could compromise user ...