A vulnerability was found in OpenText ZENworks Service Desk 25.2/25.3 . It has been rated as problematic . The affected element is an unknown function. The manipulation leads to cross site scripting. This vulnerability is listed as CVE-2026-3278 . The attack may be initiated remotely. There is no available exploit.