Cross-Site Scripting (XSS) Vulnerability in Satellite 5.8 and Earlier

CVE-2017-7538 · LOW Severity

AV:N/AC:M/AU:S/C:N/I:P/A:N

A cross-site scripting (XSS) flaw was found in how an organization name is displayed in Satellite 5, before 5.8. A user able to change an organization's name could exploit this flaw to perform XSS attacks against other Satellite users.

Learn more about our User Device Pen Test.