| Vulnerability Details | |
|---|---|
| Impact | CVSS V3 rating: 10 (Critical) |
| Reported | 6 Nov 2018 |
| Fixed | 6 Dec 2018 |
| Affected Builds | Till Build 123231 |
| Fixed in | Build 123237 |
| Overview | XSS vulnerability in adding/updating domain controller page |
| Recommended Fix | Upgrade to OpManager Version 12.3.239 or above. |
A XSS vulnerability was discovered in OpManager before version 12.3.237. The XSS vulnerability was present in the domain controller page in OpManager.
We recommend that you upgrade to OpManager Version 12.3.237 or above to fix this issue.
Source and Acknowledgements
Find out more about CVE-2018-19921 from the CVE dictionary.
For clarification or corrections please contact our support team or email us at opmanager-support@manageengine.com.