This website uses cookies. By clicking Accept, you consent to the use of cookies. Click Here to learn more about how we use cookies.
Accept
Reject
Help
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 

I found a security bug on Aerohive Manager Dashboard, I sent a report to Aerohive Sec team security@aerohive.com. But 2 months ago, they have not replied to my email.

I found a security bug on Aerohive Manager Dashboard, I sent a report to Aerohive Sec team security@aerohive.com. But 2 months ago, they have not replied to my email.

tuatnh1
New Contributor

‎02-24-2020 04:38 AM

I found a security bug on Aerohive Manager Dashboard, I sent a report to Aerohive Sec team security@aerohive.com. But 2 months ago, they have not replied to my email.
0 Kudos
8 REPLIES 8

tuatnh1
New Contributor

‎03-02-2020 02:54 AM

Hi,

Can help me ask your Security team How about "that is very unlikely to be practically exploitable" ?

Because in this case, I just need to search google who is using Aerohive products on Hive Manager to be able to execute "Reflect XSS" attacks.

If they answer this vulnerability is not valid, can I publish it on the internet?

0 Kudos

tuatnh1
New Contributor

‎02-28-2020 02:45 AM

Sound Good, Can you ask security team help me request CVE id for my report ?​

Thanks for repply.​

0 Kudos

samantha_lynn
Esteemed Contributor III

‎02-27-2020 07:12 PM

Thank you for your patience, I have sent our security teams response to you via email.

0 Kudos

samantha_lynn
Esteemed Contributor III

‎02-26-2020 02:15 PM

Thank you, I see that email and I will inquire further for you on my end. I'll let you know as soon as I have more information, please don't hesitate to check in with me periodically if you haven't heard back.

0 Kudos
GTM-P2G8KFN