CVE-2017-7419

Published: 2018-03-02T20:29Z

Last Modified: 2024-11-21T03:31Z

Source: MITRE CVE List

License: MITRE-CVE-TOS

A OAuth application in NetIQ Access Manager 4.3 before 4.3.2 and 4.2 before 4.2.4 allowed cross site scripting attacks due to unescaped "description" field that could be specified by the provider. > MITRE Terms of Use apply – see LICENSE‑MITRE.txt