Symantec Endpoint Detection and Response (SEDR), prior to 4.3.0, may be susceptible to a cross site scripting (XSS) issue. XSS is a type of issue that can enable attackers to inject client-side scripts into web pages viewed by other users. An XSS vulnerability may be used by attackers to potentially bypass access controls such as the same-origin policy.
[
{
"product": "Endpoint Detection and Response (SEDR)",
"vendor": "Symantec",
"versions": [
{
"status": "affected",
"version": "Prior to 4.3.0"
}
]
}
]