CVE-2017-9276 Common Vulnerabilities and Exposures

Upstream information

CVE-2017-9276 at MITRE

Description

Novell Access Manager iManager before 4.3.3 did not validate parameters so that cross site scripting content could be reflected back into the result page using the "a" parameter.

SUSE information

Overall state of this security issue: Does not affect SUSE products

No SUSE Bugzilla entries cross referenced.

SUSE Security Advisories:

TID7010166, published Sat Mar 3 09:46:04 UTC 2018
TID7016795, published Sa 3. MÃ¤r 12:01:16 CET 2018
TID7022359, published Sa 3. MÃ¤r 12:01:45 CET 2018

SUSE Timeline for this CVE

CVE page created: Sat Mar 3 06:24:01 2018
CVE page last modified: Tue Jul 1 12:32:43 2025