Vulnerabilities > BD > Alaris Systems Manager > 12.3
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2023-07-13 | CVE-2023-30563 | Cross-site Scripting vulnerability in BD Alaris Systems Manager 12.3/4.33 A malicious file could be uploaded into a System Manager User Import Function resulting in a hijacked session. | 8.2 |
| 2023-07-13 | CVE-2023-30564 | Cross-site Scripting vulnerability in BD Alaris Systems Manager 12.3/4.33 Alaris Systems Manager does not perform input validation during the Device Import Function. | 6.9 |