CVE-2008-5095

MEDIUM

4.3

CVSS Severity Score

EPSS Score0.0140%

EPSS Percentile29.38th

PublishedNov 14, 2008

Last ModifiedApr 23, 2026

Vulnerability Description

Cross-site scripting (XSS) vulnerability in the Novell User Application 3.0.1, 3.5.0, and 3.5.1; and Identity Manager Roles Based Provisioning Module 3.6.0 and 3.6.1 allows remote attackers to inject arbitrary web script or HTML via unknown vectors.

Affected Platforms (CPE)

📦

Novell

Identity Manager Roles Based Provisioning Module

= 3.6.0

📦

Novell

Identity Manager Roles Based Provisioning Module

= 3.6.1

📦

Novell

User Application

= 3.0.1

📦

Novell

User Application

= 3.5.0

📦

Novell

User Application

= 3.5.1

References & Advisories

🔗 http://www.novell.com/support/viewContent.do?externalId=7001157&sliceId=1

🔗 http://www.securityfocus.com/bid/30947

🔗 http://www.securitytracker.com/id?1020792

🔗 http://www.securitytracker.com/id?1020793

🔗 http://www.novell.com/support/viewContent.do?externalId=7001157&sliceId=1

🔗 http://www.securityfocus.com/bid/30947

🔗 http://www.securitytracker.com/id?1020792

🔗 http://www.securitytracker.com/id?1020793

Vulnerability Description

Affected Platforms (CPE)

Identity Manager Roles Based Provisioning Module

Identity Manager Roles Based Provisioning Module

User Application

User Application

User Application

References & Advisories

Related Vulnerabilities