VYPR
Medium severity6.1NVD Advisory· Published Mar 23, 2017· Updated Jun 17, 2026

CVE-2016-9169

CVE-2016-9169

Description

A reflected XSS vulnerability exists in the web console of the Document Viewer Agent in Novell GroupWise before 2014 R2 Support Pack 1 Hot Patch 2 that may enable a remote attacker to execute JavaScript in the context of a valid user's browser session by getting the user to click on a specially crafted link. This could lead to session compromise or other browser-based attacks.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

2
  • Novell/Groupwise2 versions
    cpe:2.3:a:novell:groupwise:2014:r2_sp1:*:*:*:*:*:*+ 1 more
    • cpe:2.3:a:novell:groupwise:2014:r2_sp1:*:*:*:*:*:*
    • (no CPE)range: <2014 R2 Support Pack 1 Hot Patch 2

Patches

Vulnerability mechanics

References

2

News mentions

0

No linked articles in our index yet.