Vulnerability in System Center Operations Manager could allow elevation of privilege - MS15-086ID: oval:org.secpod.oval:def:25887 | Date: (C)2015-08-18 (M)2021-06-02 |
Class: PATCH | Family: windows |
The host is missing an important security update according to Microsoft bulletin MS15-086. The update is required to fix a cross site scripting vulnerability. A flaw are present in the application, which does improper validation of input. An attacker who successfully exploited this vulnerability could inject a client-side script into the user's browser. The script could spoof content, disclose information, or take any action that the user could take on the affected website on behalf of the targeted user.
Platform: |
Microsoft Windows Server 2008 R2 |
Microsoft Windows Server 2012 |
Microsoft Windows Server 2012 R2 |
Product: |
Microsoft System Center Operations Manager 2012 |
Microsoft System Center Operations Manager 2012 R2 |