Cross site scripting

2013-07-3113:20:00

PRIOn knowledge base

www.prio-n.com

5.5 Medium

AI Score

Confidence

High

0.006 Low

EPSS

Percentile

79.3%

JSON

Cross-site scripting (XSS) vulnerability in the Web Email Protection component in Symantec Encryption Management Server (formerly Symantec PGP Universal Server) before 3.3.0 MP2 allows remote authenticated users to inject arbitrary web script or HTML via a crafted encrypted e-mail attachment.

CPENameOperatorVersion
encryption_management_servereq3.3.0
encryption_management_serverle3.3.0
pgp_universal_servereq3.2.1
pgp_universal_servereq3.2.0
pgp_universal_servereq3.2.1 mp2

Name	Operator	Version
encryption_management_server	eq	3.3.0
encryption_management_server	le	3.3.0
pgp_universal_server	eq	3.2.1
pgp_universal_server	eq	3.2.0
pgp_universal_server	eq	3.2.1 mp2