An issue was discovered in SmartClient 12.0. Rated medium severity (CVSS 5.3), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.
Information Disclosure
Smartclient
NVD
CVSS 3.1
5.3
EPSS
1.1%
Graph Builder in SAS Visual Analytics 8.5 allows XSS via a graph template that is accessed directly. Rated medium severity (CVSS 5.4), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.
XSS
Visual Analytics
NVD
CVSS 3.1
5.4
EPSS
0.5%