XSS Vulnerability in Remedy Mid Tier in BMC Remedy AR System 9.1 via ATTKey Parameter

XSS Vulnerability in Remedy Mid Tier in BMC Remedy AR System 9.1 via ATTKey Parameter

CVE-2017-18228 · LOW Severity

AV:N/AC:M/AU:S/C:N/I:P/A:N

Remedy Mid Tier in BMC Remedy AR System 9.1 allows XSS via the ATTKey parameter in an arsys/servlet/AttachServlet request.

Learn more about our Web Application Penetration Testing UK.