CVE-2026-3862

Summary

Cross-site Scripting (XSS) allows an attacker to submit specially crafted data to the application which is returned unaltered in the resulting web page.

Affected Software

VendorProductVersion RangeStatus
BroadcomSiteMinder12.9affected
BroadcomSiteMinder12.8.xaffected

Weaknesses

ADP Enrichment

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: no
    • Technical Impact: partial

References