Broadcom: >> Symantec Privileged Access Management Security Vulnerabilities
A reflected cross-site scripting (XSS) vulnerability exists in the PAM UI web interface. A remote attacker able to convince a PAM user to click on a specially crafted link to the PAM UI web interface could potentially execute arbitrary client-side code in the context of PAM UI.
CVSS Score
6.1
EPSS Score
0.001
Published
2024-07-15
A malicious unauthorized PAM user can access the administration configuration data and change the values.
CVSS Score
8.8
EPSS Score
0.002
Published
2022-08-26