Unrated severityNVD Advisory· Published Oct 31, 2018· Updated Aug 6, 2024
CVE-2016-6343
CVE-2016-6343
Description
JBoss BPM Suite 6 is vulnerable to a reflected XSS via dashbuilder. Remote attackers can entice authenticated users that have privileges to access dashbuilder (usually admins) to click on links to /dashbuilder/Controller containing malicious scripts. Successful exploitation would allow execution of script code within the context of the affected user.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2- Range: =6
Patches
Vulnerability mechanics
References
4- rhn.redhat.com/errata/RHSA-2017-0557.htmlmitrevendor-advisoryx_refsource_REDHAT
- access.redhat.com/errata/RHSA-2018:0296mitrevendor-advisoryx_refsource_REDHAT
- www.securityfocus.com/bid/96987mitrevdb-entryx_refsource_BID
- bugzilla.redhat.com/show_bug.cgimitrex_refsource_CONFIRM
News mentions
0No linked articles in our index yet.