CVE-2021-32544 | Tenable®

CVE-2021-32544. medium. Information; CPEs (1); Plugins (0). New! CVE Severity Now Using CVSS v3. The calculated severity for CVEs has been updated to use ... LinksTenable.ioTenableCommunity&SupportTenableUniversitySettingsSeverityCVSSv2CVSSv3ThemeLightDarkAutoNewestUpdatedSearchNewestUpdatedSearchCVEsCVE-2021-32544CVEsCVE-2021-32544mediumInformationCPEsPluginsDescriptionSpecialcharactersofIGTsearchfunctioninigt+arenotfilteredinspecificfields,whichallowremoteauthenticatedattackerscaninjectmaliciousJavaScriptandcarryoutDOM-basedXSS(Cross-sitescripting)attacks.Referenceshttps://www.twcert.org.tw/tw/cp-132-4719-e298a-1.htmlDetailsSource:MITREPublished:2021-05-11Updated:2021-05-14Type:CWE-79RiskInformationCVSSv2BaseScore:3.5Vector:AV:N/AC:M/Au:S/C:N/I:P/A:NImpactScore:2.9ExploitabilityScore:6.8Severity:LOWCVSSv3BaseScore:5.4Vector:CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:NImpactScore:2.7ExploitabilityScore:2.3Severity:MEDIUM