VIR Vulnerability Intelligence Relay

CVE-2017-7276

medium
Published 2017-07-04 ยท Modified 2026-05-13
๐Ÿ’ฌ Discuss on Community โœš Propose mitigation
CVSS v3
6.1
CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N
CVSS v4 NEW
โ€”
not yet in upstream
VIR risk
6.1

Description

There is reflected XSS in TOPdesk before 5.7.6 and 6.x and 7.x before 7.03.019.

Predictions

Exploit likelihood
71%
Patch ETA
โ€”

Heuristic predictions, AS-IS, for prioritization only.

Mitigations

No mitigations published for this CVE yet.

The vendor-content worker queues fetches as references arrive (check back in a few minutes). Or โ€” if you've already worked around this in production โ€” publish your fix to the community-verified tier.

โœš Propose a mitigation on Community โ†’ Mitigations published via the community go through AI scoring + 2 human reviewers + 7-day silent objection window before landing here with source_tier=community-verified.

Application impact
VendorProductVersionsFixed
topdesktopdesk{"endIncluding":"5.7.5"}
topdesktopdesk6.04.001
topdesktopdesk6.04.005
topdesktopdesk6.04.006
topdesktopdesk6.04.008
topdesktopdesk6.04.011
topdesktopdesk6.04.012
topdesktopdesk6.04.013
topdesktopdesk6.04.015
topdesktopdesk6.04.016
topdesktopdesk6.05.002
topdesktopdesk6.05.006
topdesktopdesk6.05.007
topdesktopdesk6.05.008
topdesktopdesk6.05.009
topdesktopdesk6.05.010
topdesktopdesk6.05.016
topdesktopdesk6.05.017
topdesktopdesk6.06.002
topdesktopdesk6.06.003
topdesktopdesk6.06.004
topdesktopdesk6.06.005
topdesktopdesk6.06.006
topdesktopdesk6.06.007
topdesktopdesk6.06.013
topdesktopdesk6.06.014
topdesktopdesk6.06.020
topdesktopdesk6.07.002
topdesktopdesk6.07.005
topdesktopdesk6.07.007
topdesktopdesk6.07.010
topdesktopdesk6.07.014
topdesktopdesk6.07.019
topdesktopdesk6.07.022
topdesktopdesk6.07.023
topdesktopdesk6.08.001
topdesktopdesk6.08.011
topdesktopdesk6.08.016
topdesktopdesk6.08.020
topdesktopdesk6.08.021
topdesktopdesk6.08.024
topdesktopdesk6.08.025
topdesktopdesk6.08.029
topdesktopdesk6.08.030
topdesktopdesk6.08.031
topdesktopdesk6.08.033
topdesktopdesk6.08.034
topdesktopdesk6.09.001
topdesktopdesk6.09.005
topdesktopdesk6.09.010
topdesktopdesk6.09.011
topdesktopdesk6.09.012
topdesktopdesk6.09.013
topdesktopdesk6.09.014
topdesktopdesk6.09.015
topdesktopdesk6.09.017
topdesktopdesk6.09.018
topdesktopdesk6.09.019
topdesktopdesk6.09.021
topdesktopdesk6.09.022
topdesktopdesk6.09.023
topdesktopdesk6.09.024
topdesktopdesk6.10.008
topdesktopdesk6.10.015
topdesktopdesk6.10.021
topdesktopdesk6.10.022
topdesktopdesk6.10.025
topdesktopdesk6.10.026
topdesktopdesk6.10.027
topdesktopdesk6.10.037
topdesktopdesk6.10.040
topdesktopdesk6.11.003
topdesktopdesk6.11.015
topdesktopdesk6.11.024
topdesktopdesk6.11.030
topdesktopdesk6.12.006
topdesktopdesk6.12.007
topdesktopdesk6.12.008
topdesktopdesk6.12.013
topdesktopdesk6.12.015
topdesktopdesk6.12.020
topdesktopdesk6.12.022
topdesktopdesk6.12.025
topdesktopdesk6.12.026
topdesktopdesk7.01.001
topdesktopdesk7.01.008
topdesktopdesk7.01.020
topdesktopdesk7.01.024
topdesktopdesk7.02.012
topdesktopdesk7.02.013
topdesktopdesk7.02.014
topdesktopdesk7.02.016
topdesktopdesk7.02.021
topdesktopdesk7.03.007
topdesktopdesk7.03.008
topdesktopdesk7.03.018
topdesktopdesk7.03.019
topdesktopdesk7.03.020
topdesktopdesk7.03.022
topdesktopdesk7.04.001
topdesktopdesk7.04.004
topdesktopdesk7.04.019
topdesktopdesk7.04.021
topdesktopdesk7.04.023
topdesktopdesk7.05.006
topdesktopdesk7.05.007
topdesktopdesk7.05.020
topdesktopdesk7.05.023
topdesktopdesk7.06.001
topdesktopdesk7.06.005
topdesktopdesk7.06.010
topdesktopdesk7.06.011
topdesktopdesk7.06.014

References

CWEs

CWE-79

Community-verified mitigations for this CVE will appear above when contributors publish them.

Verify integrity in audit chain (admin only). AS-IS.