CVE-2020-7140

6.1MEDIUM

Key Information:

Vendor: HP
Status: Icewall Sso Dfw; Icewall Sso Dgfw
Vendor: CVE Published:; 8 July 2020

Summary

A security vulnerability in HPE IceWall SSO Dfw and Dgfw (Domain Gateway Option) could be exploited remotely to cause a remote cross-site scripting (XSS). HPE has provided the following information to resolve this vulnerability in HPE IceWall SSO DFW and Dgfw: https://www.hpe.com/jp/icewall_patchaccess

Affected Version(s)

IceWall SSO Dfw; IceWall SSO Dgfw 11.0 (RHEL and Windows)

References

https://support.hpe.com/hpsc/doc/public/display?docLocale...

x_refsource_MISC

CVSS V3.1

Score:

6.1

Severity:

MEDIUM

Confidentiality:

Low

Integrity:

Low

Availability:

Low

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

Required

Scope:

Changed

Timeline

Vulnerability published
Jul 8, 2020
Vulnerability Reserved
Jan 16, 2020