Security Advisory

CVE-2023-6098

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2023-11-13 13:13:26

Last updated 2024-08-30 19:22:47

Assigner INCIBE

State PUBLISHED

Description

An XSS vulnerability has been discovered in ICS Business Manager affecting version 7.06.0028.7066. A remote attacker could send a specially crafted string exploiting the obdd_act parameter, allowing the attacker to steal an authenticated users session, and perform actions within the application.

← Browse all CVEs View on cve.org ↗