Medium severity6.1NVD Advisory· Published Jan 4, 2018· Updated Jun 17, 2026
CVE-2017-14383
CVE-2017-14383
Description
In Dell EMC VNX2 versions prior to Operating Environment for File 8.1.9.217 and VNX1 versions prior to Operating Environment for File 7.1.80.8, a web server error page in VNX Control Station is impacted by a reflected cross-site scripting vulnerability. A remote unauthenticated attacker could potentially exploit this vulnerability to execute arbitrary HTML code in the user's browser session in the context of the affected web application.
Affected products
2- Range: < Operating Environment for File 8.1.9.217 (VNX2), < Operating Environment for File 7.1.80.8 (VNX1)
- Range: < Operating Environment for File 8.1.9.217 (VNX2), < Operating Environment for File 7.1.80.8 (VNX1)
Patches
Vulnerability mechanics
References
1- seclists.org/fulldisclosure/2017/Dec/87nvdMailing ListThird Party Advisory
News mentions
0No linked articles in our index yet.