Dell PowerProtect DD , versions prior to 7.13.0.10, LTS 7.7.5.25, LTS 7.10.1.15, 6.2.1.110 contain a DOM-based Cross-Site Scripting vulnerability. A remote unauthenticated attacker could potentially exploit this vulnerability, leading to the injection of malicious HTML or JavaScript code to a victim user's DOM environment in the browser. . Exploitation may lead to information disclosure, session theft, or client-side request forgery.
References
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: dell
Published: 2023-12-14T15:35:32.521Z
Updated: 2023-12-14T15:35:32.521Z
Reserved: 2023-09-28T09:25:45.714Z
Link: CVE-2023-44286
JSON object: View
NVD Information
Status : Analyzed
Published: 2023-12-14T16:15:48.200
Modified: 2023-12-27T19:30:23.780
Link: CVE-2023-44286
JSON object: View
Redhat Information
No data.
CWE