Description
Cross-site scripting (XSS) vulnerability in CA Service Desk Manager 12.5 through 12.7 allows remote attackers to inject arbitrary web script or HTML via unspecified parameters.
References (1)
Core 1
Core References
Various Sources x_refsource_confirm
http://support.ca.com/irj/portal/anonymous/phpsupcontent?contentID=%7B8C50A6C7-8633-45A8-A0A6-3D454437AD53%7D
Scores
EPSS
0.0022
EPSS Percentile
45.1%
Details
CWE
CWE-79
Status
published
Products (3)
broadcom/service_desk_manager
12.5
broadcom/service_desk_manager
12.6
broadcom/service_desk_manager
12.7
Published
Jul 31, 2013
Tracked Since
Feb 18, 2026