Logon Manager in SAS Web Infrastructure Platform before 9.4M3 allows reflected XSS on the Timeout page.
2019-01-17T01:29:00.247
2024-11-21T02:40:14.680
Modified
CVSSv3.0: 6.1 (MEDIUM)
AV:N/AC:M/Au:N/C:N/I:P/A:N
8.6
2.9
| Type | Vendor | Product | Version/Range | Vulnerable? |
|---|---|---|---|---|
| Application | sas | web_infrastructure_platform | < 9.4 | Yes |
| Application | sas | web_infrastructure_platform | 9.4 | Yes |
| Application | sas | web_infrastructure_platform | 9.4 | Yes |
| Application | sas | web_infrastructure_platform | 9.4 | Yes |
| Application | sas | web_infrastructure_platform | 9.4 | Yes |
| Application | sas | web_infrastructure_platform | 9.4 | Yes |
| Application | sas | web_infrastructure_platform | 9.4 | Yes |
| Application | hpe | hp-ux_ipfilter | - | No |
| Operating System | ibm | aix | - | No |
| Operating System | linux | linux_kernel | - | No |
| Operating System | microsoft | windows | - | No |
| Operating System | oracle | solaris | - | No |