CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2019-12754

Symantec My VIP portal, previous version which has already been auto updated, was susceptible to a cross-site scripting (XSS) exploit, which is a type of issue that can enable attackers to inject client-side scripts into web pages viewed by other users or potentially bypass access controls such as the same-origin policy.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.007

EPSS Ranking 70.0%

CVSS Severity

CVSS v3 Score 4.8

CVSS v2 Score 3.5

References

https://support.symantec.com/us/en/article.SYMSA1491.html
https://support.symantec.com/us/en/article.SYMSA1491.html

Products affected by CVE-2019-12754

Symantec » Vip » Version: N/A

cpe:2.3:a:symantec:vip:-

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2019-12754

Products

Pricing

Contact Us