Unrated severityNVD Advisory· Published May 2, 2019· Updated Aug 4, 2024
CVE-2019-3490
CVE-2019-3490
Description
A DOM based XSS vulnerability has been identified in the Netstorage component of Open Enterprise Server (OES) allowing a remote attacker to execute javascript in the victims browser by tricking the victim into clicking on a specially crafted link. This affects OES versions OES2015SP1, OES2018, and OES2018SP1. Older versions may be affected but were not tested as they are out of support.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2- Range: OES2015SP1, OES2018, OES2018SP1
- OES/Netstorage component of Open Enterprise Serverv5Range: OES2015SP1
Patches
Vulnerability mechanics
References
1- support.microfocus.com/kb/doc.phpmitrex_refsource_MISC
News mentions
0No linked articles in our index yet.