CVEDB API

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2024-5532

Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in OpenText™ Operations Agent. The XSS vulnerability could allow an attacker with local admin permissions to manipulate the content of the internal status page of the Agent on the local system. This issue affects Operations Agent: 12.20, 12.21, 12.22, 12.23, 12.24, 12.25, 12.26.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.001

EPSS Ranking 35.0%

CVSS Severity

CVSS v3 Score 4.8

References

https://portal.microfocus.com/s/article/KM000035731?language=en_US

Products affected by CVE-2024-5532

Microfocus » Operations Agent » Version: 12.20

cpe:2.3:a:microfocus:operations_agent:12.20
Microfocus » Operations Agent » Version: 12.21

cpe:2.3:a:microfocus:operations_agent:12.21
Microfocus » Operations Agent » Version: 12.22

cpe:2.3:a:microfocus:operations_agent:12.22
Microfocus » Operations Agent » Version: 12.23

cpe:2.3:a:microfocus:operations_agent:12.23
Microfocus » Operations Agent » Version: 12.24

cpe:2.3:a:microfocus:operations_agent:12.24
Microfocus » Operations Agent » Version: 12.25

cpe:2.3:a:microfocus:operations_agent:12.25

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2024-5532

Products

Pricing

Contact Us