Netwrix Directory Manager Cross-Site Scripting Vulnerability

A cross-site scripting (XSS) vulnerability has been identified in Netwrix Directory Manager versions 11.0.0.0 prior to 11.1.25162.02. This vulnerability allows an unauthenticated attacker to inject malicious scripts into web pages viewed by other users. The issue arises because the application does not properly encode authentication error messages, creating an opportunity for reflected XSS attacks. Successful exploitation could lead to the compromise of user credentials.

Impact

Exploitation of this vulnerability could result in reflected cross-site scripting, allowing an attacker to inject malicious scripts that could be executed in the context of the user's browser session.

Remediation

Users are advised to update to Netwrix Directory Manager version 11.1.25162.02 or later. This update addresses the vulnerability by improving input sanitization to prevent cross-site scripting. After updating, it is recommended to rotate credentials for all configured Identity Stores and conduct a review of any exported scripts for potential security issues.