CVE: CVE-2017-8044

Descrizione: In Pivotal Single Sign-On for PCF (1.3.x versions prior to 1.3.4 and 1.4.x versions prior to 1.4.3), certain pages allow code to be injected into the DOM environment through query parameters, leading to XSS attacks.

Vettore di attacco

Riferimenti esterni

• https://pivotal.io/security/cve-2017-8044
• http://www.securityfocus.com/bid/100618

Prodotti interessati

• n/a – Single Sign-On for PCF 1.3.x versions prior to 1.3.4 and 1.4.x versions prior to 1.4.3

Relazioni con altri prodotti

Nessun prodotto trovato per il CVE: cve-2017-8044