CVE-2023-1860

Name of the Vulnerable Software and Affected Versions Keysight IXIA Hawkeye version 3.3.16.28

Description A problem has been found in the software. It affects unknown code in the /licenses file. The issue arises when the view argument is manipulated with a specific input, leading to cross-site scripting. This can be done remotely.

Recommendations For version 3.3.16.28, as a temporary workaround, consider restricting access to the /licenses file until a patch is available. Avoid using the view argument in the affected endpoint until the issue is resolved. At the moment, there is no information about a newer version that contains a fix for this issue.