Upstream information

CVE-2017-9276 at MITRE

Description

Novell Access Manager iManager before 4.3.3 did not validate parameters so that cross site scripting content could be reflected back into the result page using the "a" parameter.

SUSE information

Overall state of this security issue: Does not affect SUSE products

No SUSE Bugzilla entries cross referenced.

SUSE Security Advisories:

  • TID7010166, published Sat Mar 3 09:46:04 UTC 2018
  • TID7016795, published Sa 3. Mär 12:01:16 CET 2018
  • TID7022359, published Sa 3. Mär 12:01:45 CET 2018


SUSE Timeline for this CVE

CVE page created: Sat Mar 3 06:24:01 2018
CVE page last modified: Tue Jul 1 12:32:43 2025