Vulnerabilities > Ericsson > Active Library Explorer > Medium

DATE CVE VULNERABILITY TITLE RISK
2019-03-21 CVE-2019-7417 Cross-site Scripting vulnerability in Ericsson Active Library Explorer 14.3
XSS exists in Ericsson Active Library Explorer (ALEX) 14.3 in multiple parameters in the "/cgi-bin/alexserv" servlet, as demonstrated by the DB, FN, fn, or id parameter.
network
low complexity
ericsson CWE-79
6.1