The host is installed with System Center Operations Manager 2012 or 2012 R2 and is prone to a cross site scripting vulnerability. A flaw is present in the application, which does improper validation of input. An attacker who successfully exploited this vulnerability could inject a client-side script into the user's browser. The script could spoof content, disclose information, or take any action that the user could take on the affected website on behalf of the targeted user.