Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
cvelistSymantecCVELIST:CVE-2018-12241
HistoryNov 27, 2018 - 6:00 p.m.

CVE-2018-12241

2018-11-2718:00:00
symantec
www.cve.org
7

EPSS

0.003

Percentile

65.6%

JSON

The Symantec Security Analytics (SA) 7.x prior to 7.3.4 Web UI is susceptible to a reflected cross-site scripting (XSS) vulnerability. A remote attacker with knowledge of the SA web UI hostname or IP address can craft a malicious URL for the SA web UI and target SA web UI users with phishing attacks or other social engineering techniques. A successful attack allows injecting malicious JavaScript code into the SA web UI client application.

CNA Affected

[
  {
    "product": "Symantec Security Analytics (SA)",
    "vendor": "Symantec Corporation",
    "versions": [
      {
        "status": "affected",
        "version": "SA 7.x prior to 7.3.4"
      }
    ]
  }
]

Related

prion 1
nvd 1
symantec 1
cve 1
prion
prion
Cross site scripting
2018-11-27 18:29:00
nvd
nvd
CVE-2018-12241
2018-11-27 18:29:01
symantec
symantec
Reflected XSS Vulnerability in Security Analytics Web UI
2018-11-20 08:01:01
cve
cve
CVE-2018-12241
2018-11-27 18:29:01

EPSS

0.003

Percentile

65.6%

JSON
Related for CVELIST:CVE-2018-12241
prion1nvd1symantec1cve1