Security Advisory

CVE-2022-3339

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2022-10-18 00:00:00

Last updated 2025-05-08 17:24:54

Assigner trellix

State PUBLISHED

Description

A reflected cross-site scripting (XSS) vulnerability in ePO prior to 5.10 Update 14 allows a remote unauthenticated attacker to potentially obtain access to an ePO administrators session by convincing the authenticated ePO administrator to click on a carefully crafted link. This would lead to limited access to sensitive information and limited ability to alter some information in ePO.

← Browse all CVEs View on cve.org ↗