Systransoft: >> Pure Neural Server Security Vulnerabilities
A Cross-Site Scripting (XSS) issue in WebUI Translation in Systran Pure Neural Server before 9.7.0 allows a threat actor to have a remote authenticated user run JavaScript from a malicious site.
CVSS Score
5.4
EPSS Score
0.002
Published
2020-12-08
API calls in the Translation API feature in Systran Pure Neural Server before 9.7.0 allow a threat actor to use the Systran Pure Neural Server as a Denial-of-Service proxy by sending a large amount of translation requests to a destination host on any given TCP port regardless of whether a web service is running on the destination port.
CVSS Score
7.5
EPSS Score
0.003
Published
2020-12-08