VDB
CVE-2014-1652
CVE-2014-1652
PUBLISHED
CVSS 2.299999952316284 LOW
Multiple cross-site scripting (XSS) vulnerabilities in the management console in Symantec Web Gateway (SWG) before 5.2 allow remote authenticated users to inject arbitrary web script or HTML via unspecified report parameters.
EPSS 0.54% · 67.8th percentile
Risk Scores
CVSS 2.0
2.299999952316284
EPSS Score
0.54%
67.8th percentile
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| symantec | web_gateway | 0, 5.1 |
| n/a | n/a | n/a |
Timeline
- Jun 16, 2014 CVE Published
- Feb 4, 2022 EPSS Score
- Mar 29, 2022 EPSS Score
- May 14, 2022 CVE Updated
- May 20, 2022 EPSS Score
- Jul 12, 2022 EPSS Score
- Sep 3, 2022 EPSS Score
- Dec 18, 2022 EPSS Score
- Feb 8, 2023 EPSS Score
- Mar 7, 2023 EPSS Score
- Apr 2, 2023 EPSS Score
- May 25, 2023 EPSS Score
References
- 67755 vdb
- 1030443 vdb
- http://www.symantec.com/security_response/securityupdates/detail.jsp?fid=security_advisory&pvid=security_advisory&year=2014&suid=20140616_00 url
- http://www.symantec.com/security_response/securityupdates/detail.jsp?fid=securit%20y_advisory&pvid=security_advisory&year=&suid=20140616_00 url
- VU#719172 third-party-advisory
- https://nvd.nist.gov/vuln/detail/CVE-2014-1652 advisory