KLA11230
ACE vulnerability in Microsoft System Center product
Updated: 07/05/2018
CVSS
?
5.0
Detect date
?
02/15/2018
Severity
?
Warning
Description

An unspecified vulnerability was found in Microsoft Identity Manager 2016 Service Pack 1. By exploiting this vulnerability malicious users can perform cross-site scripting attacks and execute arbitrary code. This vulnerability can be exploited remotely via a specially crafted attribute value.

Affected products

Microsoft Identity Manager 2016 Service Pack 1

Solution

Install necessary updates from the KB section, that are listed in your Windows Update (Windows Update usually can be accessed from the Control Panel)

Original advisories

CVE-2018-0908

Impacts
?
ACE 
[?]

XSSCSS 
[?]
Related products
Microsoft Identity Manager 2016 Service Pack 1
CVE-IDS
?

CVE-2018-0908

Microsoft official advisories
CVE-2018-0908
KB list

4050936