CVE-2022-26483
🔶 mediumSummary
An issue was discovered in Veritas InfoScale Operations Manager (VIOM) before 7.4.2 Patch 600 and 8.x before 8.0.0 Patch 100. A reflected cross-site scripting (XSS) vulnerability in admin/cgi-bin/listdir.pl allows authenticated remote administrators to inject arbitrary web script or HTML into an HTTP GET parameter (which reflect the user input without sanitization).
CVSS Score
4.8
Medium
EPSS Score
0.2
Exploit Probability
Published Date
2022-03-04
First Seen: 2026-01-05
📊 Relative Risk Intelligence
This CVE is Lower Risk - more severe than 13.8% of all 328,009 vulnerabilities in our database.
#282,765
Below average severity
Severity Percentile
Last Modified
2024-11-21
Source
NVD 🔗
CVSS Vector 3.1
CVSS:3.1/AV:N/AC:L/PR:H/UI:R/S:C/C:L/I:L/A:N
CWE IDs (Weakness Types)