GHSA-6gj9-8hxg-8qqp

Опубликовано: 10 июн. 2025

Источник: github

Github: Не прошло ревью

CVSS3: 7.6

Описание

Improper neutralization of input during web page generation ('cross-site scripting') in Nuance Digital Engagement Platform allows an authorized attacker to perform spoofing over a network.

Ссылки

EPSS

Процентиль: 16%

0.00051

Низкий

7.6 High

CVSS3

CVE ID

CVE-2025-47977

Дефекты

CWE-79

Связанные уязвимости

CVE-2025-47977

CVSS3: 8.2

nvd

8 дней назад

Improper neutralization of input during web page generation ('cross-site scripting') in Nuance Digital Engagement Platform allows an unauthorized attacker to perform spoofing over a network.

CVE-2025-47977

CVSS3: 8.2

msrc

9 дней назад

Nuance Digital Engagement Platform Spoofing Vulnerability

EPSS

Процентиль: 16%

0.00051

Низкий

7.6 High

CVSS3

CVE ID

CVE-2025-47977

Дефекты

CWE-79