Unrated severityNVD Advisory· Published Jan 18, 2023· Updated Apr 3, 2025
XSS in Skyhigh Security SWG
CVE-2023-0214
Description
A cross-site scripting vulnerability in Skyhigh SWG in main releases 11.x prior to 11.2.6, 10.x prior to 10.2.17, and controlled release 12.x prior to 12.0.1 allows a remote attacker to craft SWG-specific internal requests with URL paths to any third-party website, causing arbitrary content to be injected into the response when accessed through SWG.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2- Range: <11.2.6 (11.x), <10.2.17 (10.x), <12.0.1 (12.x controlled release)
- Range: 11.x
Patches
Vulnerability mechanics
References
1News mentions
0No linked articles in our index yet.