cvedb.io
CVE-2017-14383
MEDIUM · CVSS 6.1
EPSS exploitation probability: 0%
Published 2018-01-04T06:29:00.200 · Last modified 2026-06-17T01:06:02.920

Summary

In Dell EMC VNX2 versions prior to Operating Environment for File 8.1.9.217 and VNX1 versions prior to Operating Environment for File 7.1.80.8, a web server error page in VNX Control Station is impacted by a reflected cross-site scripting vulnerability. A remote unauthenticated attacker could potentially exploit this vulnerability to execute arbitrary HTML code in the user's browser session in the context of the affected web application.

Affected products

dell — emc_vnx2_firmware

Does this affect you?

Add your gear to cvedb and we'll alert you only when dell ships something exploited.

Check my exposure →

References

This product uses data from the NVD API but is not endorsed or certified by the NVD. Informational only; not professional security advice.