CVE-2026-3862 | THREATINT

Description

Cross-site Scripting (XSS) allows an attacker to submit specially crafted data to the application which is returned unaltered in the resulting web page.

PUBLISHED Reserved 2026-03-10 | Published 2026-03-10 | Updated 2026-03-10 | Assigner symantec

MEDIUM: 4.6CVSS:4.0/AV:N/AC:L/AT:N/PR:H/UI:A/VC:L/VI:L/VA:N/SC:N/SI:N/SA:N/AU:N/R:A/RE:M/U:Green

Product status

Default status

unaffected

12.9

affected

12.8.x

affected

References

support.broadcom.com/...l/content/SecurityAdvisories/0/37176 vendor-advisory

cve.org (CVE-2026-3862)

nvd.nist.gov (CVE-2026-3862)

Download JSON