CVE-2018-1255— Dell RSA Identity Lifecycle and Governance 跨站脚本漏洞

Reflected Cross-Site Scripting Vulnerability

RSA Identity Lifecycle and Governance versions 7.0.1, 7.0.2 and 7.1.0 contains a reflected cross-site scripting vulnerability. A remote unauthenticated attacker could potentially exploit this vulnerability by tricking a victim application user to supply malicious HTML or JavaScript code to a vulnerable web application, which is then reflected back to the victim and executed by the web browser.

N/A

N/A

Dell RSA Identity Lifecycle and Governance 跨站脚本漏洞

Dell RSA Identity Lifecycle and Governance是美国戴尔（Dell）公司的一套身份治理和生命周期管理解决方案。该产品包括访问认证、配置自动化和角色管理等功能。 Dell RSA Identity Lifecycle and Governance 7.0.1版本、7.0.2版本和7.1.0版本中存在跨站脚本漏洞。远程攻击者可通过诱使用户将恶意的HTML或JavaScript代码提交到受影响的Web应用程序利用该漏洞在用户的Web浏览器中执行任意的脚本代码。

N/A

N/A