Cross-Site Scripting Vulnerability in Microsoft Forefront Unified Access Gateway
CVE-2011-1897

Currently unrated

Key Information:

Vendor: Microsoft
Status: Forefront Unified Access Gateway
Vendor: CVE Published:; 12 October 2011

Summary

The vulnerability allows remote attackers to exploit Microsoft Forefront Unified Access Gateway by injecting arbitrary web scripts or HTML through unspecified vectors, potentially compromising sensitive data or user sessions. Proper configurations and timely updates are essential to mitigate the risk associated with this issue.

References

https://oval.cisecurity.org/repository/search/definition/...

vdb-entrysignaturex_refsource_OVAL

https://docs.microsoft.com/en-us/security-updates/securit...

vendor-advisoryx_refsource_MS

EPSS Score

15% chance of being exploited in the next 30 days.

Timeline

Vulnerability published
Oct 12, 2011
Vulnerability Reserved
May 4, 2011