Cross-Site Scripting Vulnerability in IsilonSD Management Server 1.1.0 during OVA File Upload

Cross-Site Scripting Vulnerability in IsilonSD Management Server 1.1.0 during OVA File Upload

CVE-2019-3708 · HIGH Severity

AV:N/AC:M/AU:N/C:C/I:C/A:C

IsilonSD Management Server 1.1.0 contains a cross-site scripting vulnerability while uploading an OVA file. A remote attacker can trick an admin user to potentially exploit this vulnerability to execute malicious HTML or JavaScript code in the context of the admin user.

Learn more about our Cis Benchmark Audit For Server Software.