CVE-2022-25630

Summary

An authenticated user can embed malicious content with XSS into the admin group policy page.

Affected Software

VendorProductVersion RangeStatus
n/aSymantec Messaging GatewayAll releases prior to SMG 10.8affected

Weaknesses

  • Stored XSS Vulnerability

ADP Enrichment

CVE Program Container

Additional References

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: no
    • Technical Impact: partial

References