CVEDB API

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2026-3862

Cross-site Scripting (XSS) allows an attacker to submit specially crafted data to the application which is returned unaltered in the resulting web page.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.0

EPSS Ranking 11.2%

CVSS Severity

CVSS v3 Score 4.8

References

https://support.broadcom.com/web/ecx/support-content-notification/-/external/content/SecurityAdvisories/0/37176

Products affected by CVE-2026-3862

Broadcom » Symantec Siteminder » Version: 12.8

cpe:2.3:a:broadcom:symantec_siteminder:12.8
Broadcom » Symantec Siteminder » Version: 12.8.02

cpe:2.3:a:broadcom:symantec_siteminder:12.8.02
Broadcom » Symantec Siteminder » Version: 12.8.03

cpe:2.3:a:broadcom:symantec_siteminder:12.8.03
Broadcom » Symantec Siteminder » Version: 12.8.04

cpe:2.3:a:broadcom:symantec_siteminder:12.8.04
Broadcom » Symantec Siteminder » Version: 12.8.05

cpe:2.3:a:broadcom:symantec_siteminder:12.8.05
Broadcom » Symantec Siteminder » Version: 12.8.06

cpe:2.3:a:broadcom:symantec_siteminder:12.8.06
Broadcom » Symantec Siteminder » Version: 12.8.07

cpe:2.3:a:broadcom:symantec_siteminder:12.8.07
Broadcom » Symantec Siteminder » Version: 12.8.08

cpe:2.3:a:broadcom:symantec_siteminder:12.8.08
Broadcom » Symantec Siteminder » Version: 12.9

cpe:2.3:a:broadcom:symantec_siteminder:12.9

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2026-3862

Products

Pricing

Contact Us