# Security Updates - CVE-2024-38870 | ManageEngine OpManager
## CVE-2024-38870
## Stored XSS vulnerability in Schedule reports - CVE-2024-38870
**Severity:** Medium
**CVE ID:** [CVE-2024-38870](https://nvd.nist.gov/vuln/detail/CVE-2024-38870)
| Product name | Affected Version(s) | Fixed Version(s) | Fixed On |
|---|---|---|---|
| OpManager
OpManager Nexus
OpManager MSP
OpManager Enterprise Edition | From version 128103 and below | 128104 | June 14, 2024 |
| | From version 128151 to 128237 | 128238 | June 07,2024 |
| | From version 128247 to 128249 | 128250 & above | June 04,2024 |
**Details:**
OpManager: A stored XSS vulnerability was discovered in Schedule reports. This has now been fixed. (Reported by Muhammed Mekkawy. Refer: CVE-2024-38870).
**Steps to upgrade:**
1. Kindly download the latest upgrade pack from [here](https://www.manageengine.com/network-monitoring/itom-servicepack.html?service-pack=opm).
2. Apply the latest build to your existing product installation as per the upgrade pack instructions provided in the above step.
**Source and Acknowledgements**
This vulnerability was reported by **Muhammed Mekkawy**.
Kindly contact our product support team for further details, at the below mentioned email address:
- OpManager: [opmanager-support@manageengine.com](mailto:opmanager-support@manageengine.com)
## Related Products
- [Network Monitoring](https://www.manageengine.com/network-monitoring/?relPrd)
- [Bandwidth Monitoring & Traffic Analysis](https://www.manageengine.com/products/netflow/?relPrd)
- [Network Configuration Management](https://www.manageengine.com/network-configuration-manager/?relPrd)
- [Switch Port & IP Address Management](https://www.manageengine.com/products/oputils/?relPrd)
- [Firewall Management](https://www.manageengine.com/products/firewall/?relPrd)
- [Network Monitoring Software for MSPs](https://www.manageengine.com/network-monitoring-msp/?relPrd)
- [IT Operations Management](https://www.manageengine.com/it-operations-management/)
- [Application Performance Monitoring](https://www.manageengine.com/products/applications_manager/?relPrd)