Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
CVE-2022-38754 - Micro Focus Operations Bridge Manager and OpsBridge Containerized - Cross Site Scripting (XSS)
Vulnerability Description
A potential vulnerability has been identified in Micro Focus Operations Bridge - Containerized. The vulnerability could be exploited by a malicious authenticated OBM (Operations Bridge Manager) user to run Java Scripts in the browser context of another OBM user. Please note: The vulnerability is only applicable if the Operations Bridge Manager capability is deployed. A potential vulnerability has been identified in Micro Focus Operations Bridge Manager (OBM). The vulnerability could be exploited by a malicious authenticated OBM user to run Java Scripts in the browser context of another OBM user. This issue affects: Micro Focus Micro Focus Operations Bridge Manager versions prior to 2022.11. Micro Focus Micro Focus Operations Bridge- Containerized versions prior to 2022.11.
CVSS Information
CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:H
Vulnerability Type
在Web页面生成时对输入的转义处理不恰当(跨站脚本)
Vulnerability Title
Micro Focus Operations Bridge Manager 跨站脚本漏洞
Vulnerability Description
Micro Focus Operations Bridge Manager是英国Micro Focus公司的一个应用软件。提供一个监控功能。 Micro Focus Micro Focus Operations Bridge Manager 2022.11之前版本、Micro Focus Micro Focus Operations Bridge- Containerized 2022.11之前版本存在安全漏洞。攻击者利用该漏洞在另一个OBM用户的浏览器环境中运行Java脚本。
CVSS Information
N/A
Vulnerability Type
N/A