CVE-2014-9230

Currently unrated

Key Information:

Vendor
Symantec
Status
Data Loss Prevention
Vendor
CVE Published:
28 June 2015

Summary

Cross-site scripting (XSS) vulnerability in the administration console in the Enforce Server in Symantec Data Loss Prevention (DLP) before 12.5.2 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.

References

http://www.securityfocus.com/bid/75288
vdb-entryx_refsource_BID
http://www.securitytracker.com/id/1032710
vdb-entryx_refsource_SECTRACK
http://www.symantec.com/security_response/securityupdates...
x_refsource_CONFIRM

Timeline

  • Vulnerability published

  • Vulnerability Reserved

.