CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2026-3278

Improper neutralization of input during web page generation ('cross-site scripting') vulnerability in OpenText™ ZENworks Service Desk allows Cross-Site Scripting (XSS). The vulnerability could allow an attacker to execute arbitrary JavaScript leading to unauthorized actions on behalf of the user.This issue affects ZENworks Service Desk: 25.2, 25.3.

Exploit prediction scoring system (EPSS) score

CVSS Severity

References

https://portal.microfocus.com/s/article/KM000045873?language=en_US

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2026-3278

Products

Pricing

Contact Us