exploitDog

CVE-2025-47977

Опубликовано: 10 июн. 2025

Источник: nvd

CVSS3: 8.2

EPSS Низкий

Описание

Improper neutralization of input during web page generation ('cross-site scripting') in Nuance Digital Engagement Platform allows an unauthorized attacker to perform spoofing over a network.

Ссылки

https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-47977

EPSS

Процентиль: 16%

0.00051

Низкий

8.2 High

CVSS3

Дефекты

CWE-79

Связанные уязвимости

CVE-2025-47977

CVSS3: 8.2

msrc

9 дней назад

Nuance Digital Engagement Platform Spoofing Vulnerability

GHSA-6gj9-8hxg-8qqp

CVSS3: 7.6

github

8 дней назад

Improper neutralization of input during web page generation ('cross-site scripting') in Nuance Digital Engagement Platform allows an authorized attacker to perform spoofing over a network.

EPSS

Процентиль: 16%

0.00051

Низкий

8.2 High

CVSS3

Дефекты

CWE-79