Cross-site scripting vulnerability with Identity Server endpoints (CVE-2018-12480)

  • 7023513
  • 12-Nov-2018
  • 12-Nov-2018

Environment


Access Manager 4.4

Identity Provider Server

CVE-2018-12480

Situation

This addresses XSS vulnerabilities in the Access Manager Identity Provider Server product.

Resolution

Fixed in 4.4.3

Status

Security Alert

Feedback service temporarily unavailable. For content questions or problems, please contact Support.