Security Advisory

CVE-2024-38493

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2024-07-15 14:00:15
Last updated 2024-10-27 23:14:03
Assigner symantec
State PUBLISHED

Description

A reflected cross-site scripting (XSS) vulnerability exists in the PAM UI web interface. A remote attacker able to convince a PAM user to click on a specially crafted link to the PAM UI web interface could potentially execute arbitrary client-side code in the context of PAM UI.