Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
nvd[email protected]NVD:CVE-2019-19547
HistoryJan 13, 2020 - 4:15 p.m.

CVE-2019-19547

2020-01-1316:15:11
CWE-79
[email protected]
web.nvd.nist.gov
5

CVSS2

4.3

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:M/Au:N/C:N/I:P/A:N

CVSS3

6.1

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

REQUIRED

Scope

CHANGED

Confidentiality Impact

LOW

Integrity Impact

LOW

Availability Impact

NONE

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N

AI Score

6.3

Confidence

High

EPSS

0.001

Percentile

41.0%

JSON

Symantec Endpoint Detection and Response (SEDR), prior to 4.3.0, may be susceptible to a cross site scripting (XSS) issue. XSS is a type of issue that can enable attackers to inject client-side scripts into web pages viewed by other users. An XSS vulnerability may be used by attackers to potentially bypass access controls such as the same-origin policy.

Affected configurations

Nvd
Node
symantecendpoint_detection_and_responseRange<4.3.0
Node
fedoraprojectfedoraMatch30
OR
fedoraprojectfedoraMatch31
VendorProductVersionCPE
symantecendpoint_detection_and_response*cpe:2.3:a:symantec:endpoint_detection_and_response:*:*:*:*:*:*:*:*
fedoraprojectfedora30cpe:2.3:o:fedoraproject:fedora:30:*:*:*:*:*:*:*
fedoraprojectfedora31cpe:2.3:o:fedoraproject:fedora:31:*:*:*:*:*:*:*

Related

githubexploit 1
symantec 2
prion 1
cvelist 1
cve 1
fedora 4
openvas 4
nessus 2
githubexploit
githubexploit
Exploit for Cross-site Scripting in Symantec Endpoint Detection And Response
2021-04-03 16:28:28
symantec
symantec
Symantec Endpoint Detection and Response CVE-2019-19547 Cross Site Scripting Vulnerability
2020-01-13 00:00:00
Symantec Endpoint Detection and Response XSS
2020-01-06 14:17:15
prion
prion
Cross site scripting
2020-01-13 16:15:00
cvelist
cvelist
CVE-2019-19547
2020-01-13 15:10:46
cve
cve
CVE-2019-19547
2020-01-13 16:15:11
fedora
fedora
[SECURITY] Fedora 30 Update: cutter-re-1.10.1-3.fc30
2020-02-14 01:12:38
[SECURITY] Fedora 31 Update: cutter-re-1.10.1-3.fc31
2020-02-14 01:43:27
[SECURITY] Fedora 31 Update: radare2-4.2.1-2.fc31
2020-02-14 01:43:27
openvas
openvas
Fedora: Security Advisory for radare2 (FEDORA-2020-acd8cdb08d)
2020-02-14 00:00:00
Fedora: Security Advisory for cutter-re (FEDORA-2020-acd8cdb08d)
2020-02-14 00:00:00
Fedora: Security Advisory for cutter-re (FEDORA-2020-4a3ff78ba5)
2020-02-14 00:00:00
nessus
nessus
Fedora 30 : cutter-re / radare2 (2020-4a3ff78ba5)
2020-02-14 00:00:00
Fedora 31 : cutter-re / radare2 (2020-acd8cdb08d)
2020-02-14 00:00:00

CVSS2

4.3

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:M/Au:N/C:N/I:P/A:N

CVSS3

6.1

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

REQUIRED

Scope

CHANGED

Confidentiality Impact

LOW

Integrity Impact

LOW

Availability Impact

NONE

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N

AI Score

6.3

Confidence

High

EPSS

0.001

Percentile

41.0%

JSON
Related for NVD:CVE-2019-19547
githubexploit1symantec2prion1cvelist1cve1fedora4openvas4nessus2