Lucene search

K
prionPRIOn knowledge basePRION:CVE-2014-1652
HistoryJun 18, 2014 - 7:55 p.m.

Cross site scripting

2014-06-1819:55:00
PRIOn knowledge base
www.prio-n.com
4

5.6 Medium

AI Score

Confidence

High

2.3 Low

CVSS2

Access Vector

ADJACENT_NETWORK

Access Complexity

MEDIUM

Authentication

SINGLE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:A/AC:M/Au:S/C:N/I:P/A:N

0.26 Low

EPSS

Percentile

96.7%

Multiple cross-site scripting (XSS) vulnerabilities in the management console in Symantec Web Gateway (SWG) before 5.2 allow remote authenticated users to inject arbitrary web script or HTML via unspecified report parameters.

CPENameOperatorVersion
web_gatewayle5.1.1
web_gatewayeq5.1

5.6 Medium

AI Score

Confidence

High

2.3 Low

CVSS2

Access Vector

ADJACENT_NETWORK

Access Complexity

MEDIUM

Authentication

SINGLE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:A/AC:M/Au:S/C:N/I:P/A:N

0.26 Low

EPSS

Percentile

96.7%