Vulnerabilities > Microsoft > System Center Operations Manager > Medium

DATE CVE VULNERABILITY TITLE RISK
2023-11-14 CVE-2023-36043 Exposure of Resource to Wrong Sphere vulnerability in Microsoft System Center Operations Manager 2016/2019/2022
Open Management Infrastructure Information Disclosure Vulnerability
local
low complexity
microsoft CWE-668
6.5
6.5
2015-08-15 CVE-2015-2420 Cross-site Scripting vulnerability in Microsoft System Center Operations Manager 2012
Cross-site scripting (XSS) vulnerability in Microsoft System Center 2012 Operations Manager Gold before Rollup 8, SP1 before Rollup 10, and R2 before Rollup 7 allows remote attackers to inject arbitrary web script or HTML via a crafted URL, aka "System Center Operations Manager Web Console XSS Vulnerability."
network
microsoft CWE-79
4.3
4.3
2013-01-09 CVE-2013-0010 Cross-Site Scripting vulnerability in Microsoft System Center Operations Manager 2007
Cross-site scripting (XSS) vulnerability in Microsoft System Center Operations Manager 2007 SP1 and R2 allows remote attackers to inject arbitrary web script or HTML via crafted input, aka "System Center Operations Manager Web Console XSS Vulnerability," a different vulnerability than CVE-2013-0009.
network
microsoft CWE-79
4.3
4.3
2013-01-09 CVE-2013-0009 Cross-Site Scripting vulnerability in Microsoft System Center Operations Manager 2007
Cross-site scripting (XSS) vulnerability in Microsoft System Center Operations Manager 2007 SP1 and R2 allows remote attackers to inject arbitrary web script or HTML via crafted input, aka "System Center Operations Manager Web Console XSS Vulnerability," a different vulnerability than CVE-2013-0010.
network
microsoft CWE-79
4.3
4.3