- Home
- CVEs with nessus.description==A reflected (or non-persistent) cross-site scriting vulnerability exists in the version of Active Directory Certificate Services Web Enrollment installed on the remote Windows host due to improper validation of a request parameter.
By using a specially crafted link, an attacker could leverage the vulnerability to gain elevated privileges and execute arbitrary commands in the context of the target user.
Max CVSS | 0 |
Min CVSS | 0 |
Total Count | 2 |
| ID | CVSS | Summary | Last (major) update | Published |
Back to Top
Mark selected
Back to Top