CVE-2025-53883

Name of the Vulnerable Software and Affected Versions Container suse/manager versions prior to 5.0.28-150600.3.36.8 SUSE Manager Server LTS 4.3 versions prior to 4.3.88-150400.3.113.5

Description An Improper Neutralization of Script-Related HTML Tags in a Web Page (Basic XSS) issue exists, allowing attackers to execute arbitrary JavaScript through a reflected Cross-Site Scripting (XSS) flaw in the search fields. The issue enables privileged attackers to execute arbitrary JavaScript.

Recommendations Update Container suse/manager to version 5.0.28-150600.3.36.8 or later. Update SUSE Manager Server LTS 4.3 to version 4.3.88-150400.3.113.5 or later.