PT-2023-19316 · Broadcom · Symantec Identity Governance/Administration+1

Christopher Vella

·

Publicado

2023-01-24

·

Atualizado

2023-02-06

·

CVE-2023-23949

CVSS v3.1

8.1

Alta

VetorAV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:N
Name of the Vulnerable Software and Affected Versions No specific software or versions mentioned.
Description The issue allows an authenticated user to inject malicious HTML and JavaScript code, which will be executed in the client's browser.
Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.

XSS

Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾
dbugs@ptsecurity.com

Enumeração de Fraquezas

CWE-779CWE-79

Identificadores relacionados

CVE-2023-23949

Produtos afetados

Symantec Identity Governance/Administration
Symantec Identity Manager