CVSS: 7.5EPSS: 5%CPEs: 3EXPL: 0CVE-2021-41352 – SCOM Information Disclosure Vulnerability
https://notcve.org/view.php?id=CVE-2021-41352
SCOM Information Disclosure Vulnerability Una vulnerabilidad de Divulgación de Información en SCOM • https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-41352 •
CVSS: 4.3EPSS: 0%CPEs: 22EXPL: 0CVE-2015-2420
https://notcve.org/view.php?id=CVE-2015-2420
Cross-site scripting (XSS) vulnerability in Microsoft System Center 2012 Operations Manager Gold before Rollup 8, SP1 before Rollup 10, and R2 before Rollup 7 allows remote attackers to inject arbitrary web script or HTML via a crafted URL, aka "System Center Operations Manager Web Console XSS Vulnerability." Vulnerabilidad de XSS en Microsoft System Center 2012 Operations Manager Gold en versiones anteriores a Rollup 8, SP1 en versiones anteriores a Rollup 10 y R2 en versiones anteriores a Rollup 7, permite a atacantes remotos inyectar secuencias de comandos web o HTML arbitrarios a través de una URL manipulada, también conocido como 'System Center Operations Manager Web Console XSS Vulnerability.' • http://www.securitytracker.com/id/1033245 https://docs.microsoft.com/en-us/security-updates/securitybulletins/2015/ms15-086 • CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') •