CVE-2014-2975

Silver-peak VX < 6.2.4 - XSS

Title source: rule

Description

Cross-site scripting (XSS) vulnerability in php/user_account.php in Silver Peak VX before 6.2.4 allows remote attackers to inject arbitrary web script or HTML via the user_id parameter.

References (2)

[Third Party Advisory, US Government Resource] http://www.kb.cert.org/vuls/id/867980

[Third Party Advisory, VDB Entry] http://www.securityfocus.com/bid/68923

Scores

EPSS 0.0055

EPSS Percentile 67.6%

Details

CWE

CWE-79

Status published

Products (3)

silver-peak/vx < 6.2.4

silver-peak/vx

n/a/n/a

Published Jul 28, 2014

Tracked Since Feb 18, 2026