3.5 Low
CVSS2
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
SINGLE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:M/Au:S/C:N/I:P/A:N
5.3 Medium
AI Score
Confidence
High
0.001 Low
EPSS
Percentile
46.6%
Cross-site scripting (XSS) vulnerability in CA Spectrum 9.2.x and 9.3.x before 9.3 H02 allows remote authenticated users to inject arbitrary web script or HTML via unspecified vectors.
CPE | Name | Operator | Version |
---|---|---|---|
broadcom:spectrum | broadcom spectrum | eq | 9.2 |
broadcom:spectrum | broadcom spectrum | eq | 9.3 |
packetstormsecurity.com/files/131330/Security-Notice-For-CA-Spectrum.html
www.ca.com/us/support/ca-support-online/product-content/recommended-reading/security-notices/ca20150407-01-security-notice-for-ca-spectrum.aspx
www.securityfocus.com/archive/1/535205/100/0/threaded
www.securityfocus.com/bid/73963