Cross-site scripting (XSS) vulnerability in Intel Security ePO Web UI allows injection of malicious Java scripts via input validation bypass.

Cross-site scripting (XSS) vulnerability in Intel Security ePO Web UI allows injection of malicious Java scripts via input validation bypass.

CVE-2017-3902 · LOW Severity

AV:N/AC:M/AU:S/C:N/I:P/A:N

Cross-site scripting (XSS) vulnerability in the Web user interface (UI) in Intel Security ePO 5.1.3, 5.1.2, 5.1.1, and 5.1.0 allows authenticated users to inject malicious Java scripts via bypassing input validation.

Learn more about our Web App Pen Testing.