CVE-2023-0214

XSS in Skyhigh Security SWG

Severity Score

6.1

*CVSS v3.1

Exploit Likelihood

*EPSS

Affected Versions

*CPE

Public Exploits

*Multiple Sources

Exploited in Wild

*KEV

Decision

*SSVC

Descriptions

A cross-site scripting vulnerability in Skyhigh SWG in main releases 11.x prior to 11.2.6, 10.x prior to 10.2.17, and controlled release 12.x prior to 12.0.1 allows a remote attacker to craft SWG-specific internal requests with URL paths to any third-party website, causing arbitrary content to be injected into the response when accessed through SWG.

Una vulnerabilidad de cross site scripting en Skyhigh SWG en las versiones principales desde la 11.x a la 11.2.6, 10.x a la 10.2.17 y la versión controlada 12.x a la 12.0.1 permite a un atacante remoto crear solicitudes internas SWG con rutas URL a cualquier sitio web de terceros, lo que provoca que se inyecte contenido arbitrario en la respuesta cuando se accede a través de SWG.

Secure Web Gateway version 10.2.11 suffers from a cross site scripting vulnerability. RedTeam Pentesting identified a vulnerability which allows attackers to craft URLs to any third-party website that result in arbitrary content to be injected into the response when accessed through the Secure Web Gateway. While it is possible to inject arbitrary content types, the primary risk arises from JavaScript code allowing for cross site scripting.

*Credits: RedTeam Pentesting GmbH

CVSS Scores

NISTv3.1 6.1

Attack Vector

Network

Attack Complexity

Low

Privileges Required

None

User Interaction

Required

Scope

Changed

Confidentiality

Low

Integrity

Low

Availability

None

* Common Vulnerability Scoring System

SSVC

Decision:-

Exploitation

Automatable

Tech. Impact

* Organization's Worst-case Scenario

Timeline

2023-01-11 CVE Reserved
2023-01-18 CVE Published
2023-04-05 First Exploit
2024-08-02 CVE Updated
2024-08-10 EPSS Updated
---------- Exploited in Wild
---------- KEV Due Date

CWE

CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')

CAPEC

CAPEC-63: Cross-Site Scripting (XSS)

References (2)

URL	Tag	Source

URL	Date	SRC
https://www.exploit-db.com/exploits/51237	2023-04-05

URL	Date	SRC

URL	Date	SRC
https://kcm.trellix.com/corporate/index?page=content&id=SB10393	2023-11-07

Affected Vendors, Products, and Versions

Vendor		Product				Version		Other		Status
Vendor	Product	Version	Other	Status	<-- -->	Vendor	Product	Version	Other	Status
Trellix Search vendor "Trellix"		Skyhigh Secure Web Gateway Search vendor "Trellix" for product "Skyhigh Secure Web Gateway"				>= 10.0.0 < 10.2.17 Search vendor "Trellix" for product "Skyhigh Secure Web Gateway" and version " >= 10.0.0 < 10.2.17"		-		Affected
Trellix Search vendor "Trellix"		Skyhigh Secure Web Gateway Search vendor "Trellix" for product "Skyhigh Secure Web Gateway"				>= 11.0.0 < 11.2.6 Search vendor "Trellix" for product "Skyhigh Secure Web Gateway" and version " >= 11.0.0 < 11.2.6"		-		Affected
Trellix Search vendor "Trellix"		Skyhigh Secure Web Gateway Search vendor "Trellix" for product "Skyhigh Secure Web Gateway"				12.0.0 Search vendor "Trellix" for product "Skyhigh Secure Web Gateway" and version "12.0.0"		-		Affected