← Back to CVE List

CVE-2019-6146

Published: 2020-01-22T17:15Z
Last Modified: 2024-11-21T04:46Z
Source: MITRE CVE List
License: MITRE-CVE-TOS
It has been reported that cross-site scripting (XSS) is possible in Forcepoint Web Security, version 8.x, via host header injection. CVSSv3.0: 5.3 (Medium) (/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N) > MITRE Terms of Use apply – see LICENSE‑MITRE.txt