CVEDB API

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2020-11850

Improper Input Validation vulnerability in OpenText Self Service Password Reset allows Cross-Site Scripting (XSS). This issue affects Self Service Password Reset before 4.5.0.2 and 4.4.0.6

Exploit prediction scoring system (EPSS) score

EPSS Score 0.001

EPSS Ranking 27.8%

CVSS Severity

CVSS v3 Score 7.3

References

https://www.netiq.com/documentation/self-service-password-reset-45/sspr-4502-release-notes/data/sspr-4502-release-notes.html#b149gz5h

Products affected by CVE-2020-11850

Microfocus » Netiq Self Service Password Reset » Version: 4.0

cpe:2.3:a:microfocus:netiq_self_service_password_reset:4.0
Microfocus » Netiq Self Service Password Reset » Version: 4.1

cpe:2.3:a:microfocus:netiq_self_service_password_reset:4.1
Microfocus » Netiq Self Service Password Reset » Version: 4.2

cpe:2.3:a:microfocus:netiq_self_service_password_reset:4.2
Microfocus » Netiq Self Service Password Reset » Version: 4.3

cpe:2.3:a:microfocus:netiq_self_service_password_reset:4.3
Microfocus » Netiq Self Service Password Reset » Version: 4.4

cpe:2.3:a:microfocus:netiq_self_service_password_reset:4.4
Microfocus » Netiq Self Service Password Reset » Version: 4.5

cpe:2.3:a:microfocus:netiq_self_service_password_reset:4.5

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2020-11850

Products

Pricing

Contact Us