CVE-2014-1652
Multiple cross-site scripting (XSS) vulnerabilities in the management console in Symantec Web Gateway (SWG) before 5.2 allow remote authenticated users to inject arbitrary web script or HTML via unspecified report parameters.
View on NVDSeverity
N/A
EPSS
Probability of exploitation (next 30 days): 0.0053 (0.5%)
Percentile: 67.5%
EPSS: 2026-05-06
Affects
symantec:web_gatewayTechnical description
Multiple cross-site scripting (XSS) vulnerabilities in the management console in Symantec Web Gateway (SWG) before 5.2 allow remote authenticated users to inject arbitrary web script or HTML via unspecified report parameters.
Published: 6/18/2014, 7:55:04 PM
Last modified: 5/6/2026, 10:30:45 PM
References
- http://www.kb.cert.org/vuls/id/719172
- http://www.securityfocus.com/bid/67755
- http://www.securitytracker.com/id/1030443
- http://www.symantec.com/security_response/securityupdates/detail.jsp?fid=securit%20y_advisory&pvid=security_advisory&year=&suid=20140616_00
- http://www.symantec.com/security_response/securityupdates/detail.jsp?fid=security_advisory&pvid=security_advisory&year=2014&suid=20140616_00
- http://www.kb.cert.org/vuls/id/719172
- http://www.securityfocus.com/bid/67755
- http://www.securitytracker.com/id/1030443