Unrated severityNVD Advisory· Published Feb 18, 2022· Updated Aug 3, 2024
CVE-2021-30650
CVE-2021-30650
Description
A reflected cross-site scripting (XSS) vulnerability in the Symantec Layer7 API Management OAuth Toolkit (OTK) allows a remote attacker to craft a malicious URL for the OTK web UI and target OTK users with phishing attacks or other social engineering techniques. A successful attack allows injecting malicious code into the OTK web UI client application.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2- Symantec/Layer7 API Management OAuth Toolkit (OTK)description
Patches
Vulnerability mechanics
References
1News mentions
0No linked articles in our index yet.