Vulnerability Details CVE-2022-37245
MDaemon Technologies SecurityGateway for Email Servers 8.5.2 is vulnerable to Cross Site Scripting (XSS) via the Blacklist endpoint.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.006
EPSS Ranking 68.5%
CVSS Severity
CVSS v3 Score 5.4
References
- https://files.mdaemon.com/securitygateway/release/relnotes_en.htm
- https://gtn.com.np/wp-content/uploads/2022/07/Stored-Cross-Site-Scripting-XSS-at-Blacklist-endpoint.pdf
- https://files.mdaemon.com/securitygateway/release/relnotes_en.htm
- https://gtn.com.np/wp-content/uploads/2022/07/Stored-Cross-Site-Scripting-XSS-at-Blacklist-endpoint.pdf
Products affected by CVE-2022-37245
-
cpe:2.3:a:altn:security_gateway_for_email_servers:8.5.2