CVE-2021-40092

CVE-2021-40092

EPSS 0.6%

A cross-site scripting (XSS) vulnerability in Image Tile in SquaredUp for SCOM 5.2.1.6654 allows remote attackers to inject arbitrary web script or HTML via an SVG file.

Affected products

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →

References

https://support.squaredup.com https://support.squaredup.com/hc/en-us/articles/4410635417233-CVE-2021-40092-Stored-cross-site-scripting-Image-tile-