CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2012-0296

Multiple cross-site scripting (XSS) vulnerabilities in the management GUI in Symantec Web Gateway 5.0.x before 5.0.3 allow remote attackers to inject arbitrary web script or HTML via unspecified vectors.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.006

EPSS Ranking 69.4%

CVSS Severity

CVSS v2 Score 4.3

References

http://www.securityfocus.com/bid/53396
http://www.symantec.com/security_response/securityupdates/detail.jsp?fid=security_advisory&pvid=security_advisory&year=2012&suid=20120517_00
http://www.securityfocus.com/bid/53396
http://www.symantec.com/security_response/securityupdates/detail.jsp?fid=security_advisory&pvid=security_advisory&year=2012&suid=20120517_00

Products affected by CVE-2012-0296

Symantec » Web Gateway » Version: 5.0

cpe:2.3:a:symantec:web_gateway:5.0
Symantec » Web Gateway » Version: 5.0.1

cpe:2.3:a:symantec:web_gateway:5.0.1
Symantec » Web Gateway » Version: 5.0.2

cpe:2.3:a:symantec:web_gateway:5.0.2

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2012-0296

Products

Pricing

Contact Us