CVE-2021-32092

Severity CVSS v4.0:
Pending analysis
Type:
CWE-79 Cross-Site Scripting (XSS)
Publication date:
07/05/2021
Last modified:
13/05/2021

Description

A Cross-site scripting (XSS) vulnerability in the DocumentAction component of U.S. National Security Agency (NSA) Emissary 5.9.0 allows remote attackers to inject arbitrary web script or HTML via the uuid parameter.

Vulnerable products and versions

CPE From Up to
cpe:2.3:a:nsa:emissary:5.9.0:*:*:*:*:*:*:*