Security Advisory

CVE-2026-3278

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2026-03-18 13:49:28

Last updated 2026-03-18 14:12:07

Assigner OpenText

State PUBLISHED

Description

Improper neutralization of input during web page generation (cross-site scripting) vulnerability in OpenText™ ZENworks Service Desk allows Cross-Site Scripting (XSS). The vulnerability could allow an attacker to execute arbitrary JavaScript leading to unauthorized actions on behalf of the user.This issue affects ZENworks Service Desk: 25.2, 25.3.

← Browse all CVEs View on cve.org ↗