Cross-Site Scripting Vulnerability in IsilonSD Management Server 1.1.0 during vCenter Server Registration

Cross-Site Scripting Vulnerability in IsilonSD Management Server 1.1.0 during vCenter Server Registration

CVE-2019-3709 · HIGH Severity

AV:N/AC:M/AU:N/C:C/I:C/A:C

IsilonSD Management Server 1.1.0 contains a cross-site scripting vulnerability while registering vCenter servers. A remote attacker can trick an admin user to potentially exploit this vulnerability to execute malicious HTML or JavaScript code in the context of the admin user.

Learn more about our Cis Benchmark Audit For Server Software.