CVE-2021-40093

CVE-2021-40093

EPSS 0.6%

A cross-site scripting (XSS) vulnerability in integration configuration in SquaredUp for SCOM 5.2.1.6654 allows remote attackers to inject arbitrary web script or HTML via dashboard actions.

Affected products

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →

References

https://support.squaredup.com https://support.squaredup.com/hc/en-us/articles/4410635418257-CVE-2021-40093-Stored-cross-site-scripting-Action-Buttons-