CVE-2022-38162

2022-10-2500:00:00

mitre

www.cve.org

reflected xss

withsecure policy manager

remote attackers

malicious input

0.001 Low

EPSS

Percentile

49.7%

JSON

Reflected cross-site scripting (XSS) vulnerabilities in WithSecure through 2022-08-10) exists within the F-Secure Policy Manager due to an unvalidated parameter in the endpoint, which allows remote attackers to provide a malicious input.

References

withsecure.com

www.withsecure.com/en/support/security-advisories

www.withsecure.com/en/support/security-advisories/cve-2022-38162?_gl=1%2Adtq2t3%2A_up%2AMQ..%2A_ga%2AMTMxOTM1OTA2MC4xNjY2NzIxMjQ0%2A_ga_B5SG5Y2DHS%2AMTY2NjcyMTI0MS4xLjAuMTY2NjcyMTI0MS4wLjAuMA..

0.001 Low

EPSS

Percentile

49.7%

JSON

Related for CVELIST:CVE-2022-38162