Problem Note 68789: SAS® Content Server contains a cross-site scripting vulnerability
 |  |  |  |  |
Severity: High
Description: SAS Content Server contains a stored cross-site scripting vulnerability.
Potential Impact: A user might unknowingly execute malicious code. This exploit requires an authenticated, authorized user.
Click the Hot Fix tab in this note to access the hot fix for this issue.
Operating System and Release Information
| Product Family | Product | System | Product Release | SAS Release | ||
| Reported | Fixed* | Reported | Fixed* | |||
| SAS System | SAS Web Infrastructure Platform | Microsoft® Windows® for x64 | 9.4_M7 | 9.4 TS1M7 | ||
| 64-bit Enabled AIX | 9.4_M7 | 9.4 TS1M7 | ||||
| 64-bit Enabled Solaris | 9.4_M7 | 9.4 TS1M7 | ||||
| HP-UX IPF | 9.4_M7 | 9.4 TS1M7 | ||||
| Linux for x64 | 9.4_M7 | 9.4 TS1M7 | ||||
| Solaris for x64 | 9.4_M7 | 9.4 TS1M7 | ||||
A fix for this issue for SAS Middle Tier 9.4_M7 is available at:
https://tshf.sas.com/techsup/download/hotfix/HF2/J2L.html#68789| Type: | Problem Note |
| Priority: | high |
| Date Modified: | 2022-03-31 07:58:39 |
| Date Created: | 2022-01-14 14:44:29 |