CVE-2018-1246

N/A

Dell EMC Unity and UnityVSA contains reflected cross-site scripting vulnerability. A remote unauthenticated attacker could potentially exploit this vulnerability by tricking a victim application user to supply malicious HTML or Java Script code to Unisphere, which is then reflected back to the victim and executed by the web browser.

N/A

N/A

Dell EMC Unity Operating Environment 跨站脚本漏洞

Dell EMC Unity Operating Environment（OE）是美国戴尔（Dell）公司的一套使用在EMC Unity存储系统中的操作环境。UnityVSA是它的另一版本。 Dell EMC Unity OE和OE UnityVSA中存在跨站脚本漏洞。远程攻击者可通过诱使用户向Unisphere提交恶意的HTML或Java Script代码利用该漏洞在用户的Web浏览器中执行代码。

N/A

N/A