CVE-2019-16962: HTML Injection vulnerability

This document will explain you about the unwanted HTML injection (CVE-2019-16962) in custom reports.

What was the problem?

This vulnerability allows authenticated users to inject arbitrary HTML code in the Report Name parameter.

How do I fix it?

This has been identified and fixed in Desktop Central build 10.0.486. To apply this fix, follow the steps below:

  1. Log in to your Desktop Central console, click on your current build number on the top right corner.
  2. You can find the latest build applicable to you. Download the PPM and update.

    Keywords: Security Updates, Vulnerabilities and Fixes.