Alerts

Cross-Site Scripting (XSS) vulnerability in Version Manager Web Client (VM I-Net)



ID:    A55
Published:    07 January 2014
Updated:    07 January 2014

Operating System(s)

  • All Unix
  • All Windows

Product(s)

  • PVCS Version Manager
 

Description

Serena was notified of the existence of Cross-Site Scripting (XSS) vulnerabilities in Version Manager that could affect VM I-Net web client users.
 
We have released a HotFix for VM 8.4.6 and VM 8.5.0 to mitigate these issues.
 
  • If you are running VM 8.5.0, please download the patch from KB article P2710.
  • If you are running VM 8.4.6, please download the patch from KB article P2709.
 
Users of older VM releases should upgrade to either of these versions first.

Find Answers

Type a question or describe what you are looking for below

My Recent Searches

Welcome kb sso

Additional Assistance

  • Submit a Case Online
  • FAQs