CVE-2012-1984
RealNetworks Helix Server and Helix Mobile Server 14.x - Cross-Site Scripting
Title source: llmDescription
Multiple cross-site scripting (XSS) vulnerabilities in RealNetworks Helix Server and Helix Mobile Server 14.x before 14.3.x allow remote attackers to inject arbitrary web script or HTML via unspecified vectors.
References (4)
Core 4
Core References
Third Party Advisory, VDB Entry vdb-entry
x_refsource_bid
http://www.securityfocus.com/bid/52929
Third Party Advisory, VDB Entry vdb-entry
x_refsource_sectrack
http://www.securitytracker.com/id?1026898
Third Party Advisory, VDB Entry vdb-entry
x_refsource_xf
https://exchange.xforce.ibmcloud.com/vulnerabilities/74677
Vendor Advisory x_refsource_confirm
http://helixproducts.real.com/docs/security/SecurityUpdate04022012HS.pdf
Scores
EPSS
0.0026
EPSS Percentile
49.0%
Details
CWE
CWE-79
Status
published
Products (6)
realnetworks/helix_mobile_server
14.0.0
realnetworks/helix_mobile_server
14.0.1
realnetworks/helix_server
14.0.0
realnetworks/helix_server
14.0.1
realnetworks/helix_server
14.2
realnetworks/helix_server
14.2.0.212
Published
Apr 17, 2012
Tracked Since
Feb 18, 2026