CVE-2012-0296

Symantec Web Gateway <5.0.3 - XSS

Title source: llm

Description

Multiple cross-site scripting (XSS) vulnerabilities in the management GUI in Symantec Web Gateway 5.0.x before 5.0.3 allow remote attackers to inject arbitrary web script or HTML via unspecified vectors.

References (2)

[Exploit] http://www.securityfocus.com/bid/53396

[Vendor Advisory] http://www.symantec.com/security_response/securityupdates/detail.jsp?fid=security_advisory&pvid=security_advisory&year=2012&suid=20120517_00

Scores

EPSS 0.0064

EPSS Percentile 70.4%

Classification

CWE

CWE-79

Status published

Affected Products (4)

symantec/web_gateway

n/a/n/a

Timeline

Published May 21, 2012

Tracked Since Feb 18, 2026