CVE-2020-35206 is a vulnerability in Quest Software Policy Authority Unified Communications
Published on January 11, 2021

Reflected XSS in Web Compliance Manager in Quest Policy Authority version 8.1.2.200 allows attackers to inject malicious code into the browser via a specially crafted link to the cConn.jsp file via the ur parameter. NOTE: This vulnerability only affects products that are no longer supported by the maintainer

NVD

Products Associated with CVE-2020-35206

Want to know whenever a new CVE is published for Quest Software Policy Authority Unified Communications? stack.watch will email you.

Quest Software Policy Authority Unified Communications

Exploit Probability

EPSS

0.24%

Percentile

46.97%

EPSS (Exploit Prediction Scoring System) scores estimate the probability that a vulnerability will be exploited in the wild within the next 30 days. The percentile shows you how this score compares to all other vulnerabilities.

CVE-2020-35206 is a vulnerability in Quest Software Policy Authority Unified CommunicationsPublished on January 11, 2021

Products Associated with CVE-2020-35206

Exploit Probability

CVE-2020-35206 is a vulnerability in Quest Software Policy Authority Unified Communications
Published on January 11, 2021