Vulnerability Description
Persistent Cross-Site Scripting, and non-persistent HTML Injection in HP Network Operations Management Ultimate, version 2017.07, 2017.11, 2018.02 and in Network Automation, version 10.00, 10.10, 10.11, 10.20, 10.30, 10.40, 10.50. This vulnerability could be remotely exploited to allow persistent cross-site scripting, and non-persistent HTML Injection.
CVSS Score
MEDIUM
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Hp | Network Operations Management Ultimate | 2017.07 |
| Hp | Network Automation | 10.00 |
Related Weaknesses (CWE)
References
- http://www.securityfocus.com/bid/104131
- http://www.securitytracker.com/id/1040900
- https://softwaresupport.softwaregrp.com/document/-/facetsearch/document/KM031580
- http://www.securityfocus.com/bid/104131
- http://www.securitytracker.com/id/1040900
- https://softwaresupport.softwaregrp.com/document/-/facetsearch/document/KM031580
FAQ
What is CVE-2018-6492?
CVE-2018-6492 is a vulnerability with a CVSS score of 4.7 (MEDIUM). Persistent Cross-Site Scripting, and non-persistent HTML Injection in HP Network Operations Management Ultimate, version 2017.07, 2017.11, 2018.02 and in Network Automation, version 10.00, 10.10, 10.1...
How severe is CVE-2018-6492?
CVE-2018-6492 has been rated MEDIUM with a CVSS base score of 4.7/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2018-6492?
Check the references section above for vendor advisories and patch information. Affected products include: Hp Network Operations Management Ultimate, Hp Network Automation.