Security Advisory

CVE-2018-16096

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2018-11-27 14:00:00

Last updated 2024-08-05 10:17:37

Assigner lenovo

State PUBLISHED

Description

In System Management Module (SMM) versions prior to 1.06, the SMM web interface for changing Enclosure VPD fails to sufficiently sanitize all input for HTML tags, possibly opening a path for cross-site scripting.

← Browse all CVEs View on cve.org ↗