Dell EMC Data Protection Advisor versions 19.6 and earlier, contains a Stored Cross Site Scripting, an attacker could potentially exploit this vulnerability, leading to the storage of malicious HTML or JavaScript codes in a trusted application data store. When a victim user accesses the data store through their browsers, the malicious code gets executed by the web browser in the context of the vulnerable web application. Exploitation may lead to information disclosure, session theft, or client-side request forgery.
References
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: dell
Published: 2022-07-25T00:00:00
Updated: 2022-08-30T20:25:14
Reserved: 2022-06-17T00:00:00
Link: CVE-2022-33935
JSON object: View
NVD Information
Status : Analyzed
Published: 2022-08-30T21:15:08.707
Modified: 2022-09-07T19:55:01.220
Link: CVE-2022-33935
JSON object: View
Redhat Information
No data.
CWE