Lucene search

PRIOn knowledge basePRION:CVE-2014-1652

HistoryJun 18, 2014 - 7:55 p.m.

Cross site scripting

2014-06-1819:55:00

PRIOn knowledge base

www.prio-n.com

5.6 Medium

AI Score

Confidence

High

2.3 Low

CVSS2

Access Vector

ADJACENT_NETWORK

Access Complexity

MEDIUM

Authentication

SINGLE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:A/AC:M/Au:S/C:N/I:P/A:N

0.26 Low

EPSS

Percentile

96.7%

JSON

Multiple cross-site scripting (XSS) vulnerabilities in the management console in Symantec Web Gateway (SWG) before 5.2 allow remote authenticated users to inject arbitrary web script or HTML via unspecified report parameters.

CPENameOperatorVersion
web_gatewayle5.1.1
web_gatewayeq5.1

CPE	Name	Operator	Version
	web_gateway	le	5.1.1
	web_gateway	eq	5.1

References

www.kb.cert.org/vuls/id/719172

www.securityfocus.com/bid/67755

www.securitytracker.com/id/1030443

www.symantec.com/security_response/securityupdates/detail.jsp?fid=securit%20y_advisory&pvid=security_advisory&year=&suid=20140616_00

www.symantec.com/security_response/securityupdates/detail.jsp?fid=security_advisory&pvid=security_advisory&year=2014&suid=20140616_00

5.6 Medium

AI Score

Confidence

High

2.3 Low

CVSS2

Access Vector

ADJACENT_NETWORK

Access Complexity

MEDIUM

Authentication

SINGLE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:A/AC:M/Au:S/C:N/I:P/A:N

0.26 Low

EPSS

Percentile

96.7%

JSON

Related for PRION:CVE-2014-1652