An issue has been identified concerning the use of an outdated version of a JavaScript library within a network management platform. This older version potentially exposes the system to security vulnerabilities, specifically concerning cross-site scripting attacks. The recommendation is to update the library to a more secure version to mitigate these risks.
Key Findings:
- An outdated JavaScript library is in use.
- The outdated library presents potential security risks.
- The primary security concern is susceptibility to cross-site scripting attacks.
- Updating the library is recommended to address the vulnerabilities.
Source: https://community.hpe.com/t5/hpe-oneview/pentest-findng-regarding-old-jquery-version-on-oneview-9-3/m-p/7240596#M9876
