broadcom symantec-critical-system-protection CVE-2014-9224 in Broadcom and Symantec Products
Published on January 21, 2015

product logo product logo
Cross-site scripting (XSS) vulnerability in the ajaxswing webui in the Management Console server in the management server in Symantec Critical System Protection (SCSP) 5.2.9 through MP6 and Symantec Data Center Security: Server Advanced (SDCS:SA) 6.0.x through 6.0 MP1 allows remote authenticated users to inject arbitrary web script or HTML via unspecified vectors.

NVD


Products Associated with CVE-2014-9224

You can be notified by email with stack.watch whenever vulnerabilities like CVE-2014-9224 are published in these products:

Broadcom Symantec Critical System Protection
 
Symantec Data Center Security
 

Exploit Probability

EPSS
3.98%
Percentile
88.17%

EPSS (Exploit Prediction Scoring System) scores estimate the probability that a vulnerability will be exploited in the wild within the next 30 days. The percentile shows you how this score compares to all other vulnerabilities.