Lucene search
HistoryFeb 11, 2014 - 2:55 a.m.
CVE-2013-5013
cve-2013-5013
cross-site scripting
xss
symantec web gateway
security vulnerability
nvd
5.8 Medium
AI Score
Confidence
High
4.3 Medium
CVSS2
Access Vector
Access Complexity
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:M/Au:N/C:N/I:P/A:N
0.71 High
EPSS
Percentile
98.0%
Multiple cross-site scripting (XSS) vulnerabilities in the management console on the Symantec Web Gateway (SWG) appliance before 5.2 allow remote attackers to inject arbitrary web script or HTML via (1) vectors involving PHP scripts and (2) unspecified other vectors.
Affected configurations
Node
symantecweb_gatewayRange≤5.1.1
| CPE | Name | Operator | Version |
|---|---|---|---|
| symantec:web_gateway | symantec web gateway | le | 5.1.1 |
References
Social References
More
Related
checkpoint_advisories
checkpoint_advisories
Symantec Web Gateway blacklist.php Cross Site Scripting (CVE-2013-5013)
2014-03-16 00:00:00
prion
prion
Cross site scripting
2014-02-11 02:55:00
cvelist
cvelist
CVE-2013-5013
2014-02-11 02:00:00
nvd
nvd
CVE-2013-5013
2014-02-11 02:55:08
symantec
symantec
Symantec Web Gateway Security Management Console Multiple Security Issues
2014-02-10 08:00:00
openvas
openvas
Symantec Web Gateway Cross-Site Scripting and SQL Injection Vulnerabilities
2014-03-10 00:00:00
nessus
nessus
Symantec Web Gateway < 5.2 Multiple Vulnerabilities (SYM14-003)
2015-05-13 00:00:00
Symantec Web Gateway <= 5.1.1 Multiple Vulnerabilities (SYM14-003)
2014-02-13 00:00:00
5.8 Medium
AI Score
Confidence
High
4.3 Medium
CVSS2
Access Vector
Access Complexity
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:M/Au:N/C:N/I:P/A:N
0.71 High
EPSS
Percentile
98.0%
Related for CVE-2013-5013