CVEDB API

An authenticated user can supply malicious HTML and JavaScript code that will be executed in the client browser.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.005

EPSS Ranking 65.3%

CVSS Severity

CVSS v3 Score 5.4

References

Products affected by CVE-2023-23949

Broadcom » Symantec Identity Governance And Administration » Version: 14.3

cpe:2.3:a:broadcom:symantec_identity_governance_and_administration:14.3
Broadcom » Symantec Identity Governance And Administration » Version: 14.4.1

cpe:2.3:a:broadcom:symantec_identity_governance_and_administration:14.4.1
Broadcom » Symantec Identity Governance And Administration » Version: 14.4.2

cpe:2.3:a:broadcom:symantec_identity_governance_and_administration:14.4.2
Broadcom » Symantec Identity Manager » Version: 14.3

cpe:2.3:a:broadcom:symantec_identity_manager:14.3
Broadcom » Symantec Identity Manager » Version: 14.4

cpe:2.3:a:broadcom:symantec_identity_manager:14.4