VYPR
Medium severity6.1NVD Advisory· Published Jan 4, 2018· Updated Jun 17, 2026

CVE-2017-14383

CVE-2017-14383

Description

In Dell EMC VNX2 versions prior to Operating Environment for File 8.1.9.217 and VNX1 versions prior to Operating Environment for File 7.1.80.8, a web server error page in VNX Control Station is impacted by a reflected cross-site scripting vulnerability. A remote unauthenticated attacker could potentially exploit this vulnerability to execute arbitrary HTML code in the user's browser session in the context of the affected web application.

Affected products

2
  • Range: < Operating Environment for File 8.1.9.217 (VNX2), < Operating Environment for File 7.1.80.8 (VNX1)
  • Range: < Operating Environment for File 8.1.9.217 (VNX2), < Operating Environment for File 7.1.80.8 (VNX1)

Patches

Vulnerability mechanics

References

1

News mentions

0

No linked articles in our index yet.