CVE-2023-50976: Transactions API Authorization by oleiman · Pull Request #14969 · redpanda-data/redpanda

CVE-2023-6905

CVE-2023-6903

CVE-2023-6904

CVE-2023-3907

An authenticated user can embed malicious content with XSS into the admin group policy page.

Stored XSS Vulnerability in Symantec Messaging Gateway 10.7.4

Last Updated

08 December 2022

Initial Publication Date

08 December 2022

**Summary**

An authenticated user can embed malicious content with XSS into the admin group policy page.

**Affected Product(s)**

**Symantec Messaging Gateway**

**CVE**

**Supported Version(s)**

**Remediation**

CVE-2022-25630

10.7.4 – 10.7.13

The customers should apply Symantec Messaging Gateway 10.8

**Issue Details**

**CVE-2022-25630**

**Severity / CVSS v3.0:**

Medium / 4.8 (AV:N/AC:L/PR:H/UI:R/S:C/C:L/I:L/A:N)

**References:**

NVD: CVE-2022-25630

**Impact:**

Stored XSS Vulnerability

**Description:**

An authenticated user can embed malicious content with XSS into the admin group policy page.

**Acknowledgements**

*   _CVE-2022-25630_  Omur Ugur omur.ugur@turktelekom.com.tr

**Revisions**

2022-12-0: Initial public release

Headline

CVE-2022-25630: Support Content Notification - Support Portal - Broadcom support portal

CVE: Latest News