CVE-2013-1611

Symantec Brightmail Gateway - XSS

Title source: rule

Description

Multiple cross-site scripting (XSS) vulnerabilities in administrative-interface pages in the management console in Symantec Brightmail Gateway 9.5.x allow remote authenticated users to inject arbitrary web script or HTML via unspecified vectors.

References (2)

[Vendor Advisory] http://www.symantec.com/security_response/securityupdates/detail.jsp?fid=security_advisory&pvid=security_advisory&year=&suid=20130508_00

[Third Party Advisory, VDB Entry] http://www.securityfocus.com/bid/59700

Scores

EPSS 0.0028

EPSS Percentile 51.1%

Details

CWE

CWE-79

Status published

Products (3)

symantec/brightmail_gateway

n/a/n/a

Published May 09, 2013

Tracked Since Feb 18, 2026