Vulnerability Details CVE-2024-2166
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Forcepoint Email Security (Real Time Monitor modules) allows Reflected XSS.This issue affects Email Security: before 8.5.5 HF003.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.002
EPSS Ranking 41.5%
CVSS Severity
CVSS v3 Score 8.8
Products affected by CVE-2024-2166
-
cpe:2.3:a:forcepoint:email_security:-
-
cpe:2.3:a:forcepoint:email_security:7.6
-
cpe:2.3:a:forcepoint:email_security:7.7
-
cpe:2.3:a:forcepoint:email_security:7.7.3
-
cpe:2.3:a:forcepoint:email_security:7.8.1
-
cpe:2.3:a:forcepoint:email_security:7.8.2
-
cpe:2.3:a:forcepoint:email_security:7.8.3
-
cpe:2.3:a:forcepoint:email_security:7.8.4
-
cpe:2.3:a:forcepoint:email_security:8.0
-
cpe:2.3:a:forcepoint:email_security:8.0.1
-
cpe:2.3:a:forcepoint:email_security:8.1
-
cpe:2.3:a:forcepoint:email_security:8.2
-
cpe:2.3:a:forcepoint:email_security:8.3
-
cpe:2.3:a:forcepoint:email_security:8.4
-
cpe:2.3:a:forcepoint:email_security:8.5
-
cpe:2.3:a:forcepoint:email_security:8.5.0
-
cpe:2.3:a:forcepoint:email_security:8.5.3
-
cpe:2.3:a:forcepoint:email_security:8.5.4
-
cpe:2.3:a:forcepoint:email_security:8.5.5