CyberRota
← Ana sayfaya dön

CVE-2026-9585

UNKNOWN · CVSS N/A

Kaynak: NVD + CISA KEV + EPSS · Yayınlanma: 2026-07-17T17:17:17.990 · Çekilme zamanı: 2026-07-17T18:34:04.837111+00:00

CyberRota Yorumu

Detaylı analiz gerekiyor.

CVE
CVE-2026-9585
Severity
UNKNOWN
CVSS
N/A
EPSS
Yok
Java

Orijinal NVD Açıklaması

An unauthenticated reflected cross-site scripting (XSS) vulnerability exists in Sangoma Switchvox SMB Edition version 8.3 (104997). The application fails to properly sanitize the portal parameter supplied to the invalid_browser and invalid_browser_login handlers. User-supplied data is reflected into JavaScript generated by the application, allowing attacker-controlled script execution within a victim's browser.