Home

CVE-2015-3005

Description

A reflected cross site scripting XSS vulnerability in SRX Dynamic VPN may allow the stealing of sensitive information or session credentials from Dynamic VPN users

Risk Information

Base Score
6.1
MODERATE
Vector
AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N
EPSS Score
Exploitation Probability
0.296

Associated Vulnerability

VulnerabilityOS Platform
Improper Neutralization of Input During Web Page Generation (Cross-site Scripting) Vulnerability (CVE-2015-3005)NCM

Patch Details

No records found

References

https://nvd.nist.gov/vuln/detail/CVE-2023-1234
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-1234