CVE-2022-46785 - Prototype pollution leading to XSS
Prototype pollution leading to XSS was found in SquaredUp DS for SCOM 22.214.171.12414.
What should you do?
If you are using a SquaredUp DS version earlier than 126.96.36.19985, update to version 188.8.131.5285 or later.
Affected and resolved software versions
|Product||Affected versions||Resolved versions|
|SquaredUp DS for SCOM||Versions earlier than 184.108.40.20685||220.127.116.1185 and later versions|
|SquaredUp DS for Azure||Versions earlier than 18.104.22.16885||22.214.171.12485 and later versions|
|SquaredUp DS Standalone||Versions earlier than 126.96.36.19985||188.8.131.5285 and later versions|
SquaredUp would like to thank Kajetan Rostojek from ING Tech Poland for reporting this vulnerability.
Did you notice a vulnerability or need further help?
Please contact SquaredUp Support if you have any questions about this vulnerability or need further help.
If you believe you've found a different security vulnerability in one of our products please report it by emailing our support team so we can work on fixing it: email@example.com
Revision history of this article