2 matches found
CVE-2021-41352
CVE-2021-41352 corresponds to a SCOM information disclosure vulnerability affecting System Center Operations Manager 2012 R2, 2016 and 2019. The connected Nessus/NASL entry describes an information disclosure vulnerability in SCOM’s web-facing components, specifically an insecure direct object re...
CVE-2015-2420
CVE-2015-2420 is a cross-site scripting (XSS) vulnerability in Microsoft System Center 2012 Operations Manager. The flaw affects the Web Console component and can be triggered when a user visits a specially crafted URL, allowing remote attackers to inject arbitrary web script or HTML. Affected pr...