Описание
Multiple cross-site scripting (XSS) vulnerabilities in dashboard-related HTML documents in Cisco Prime Security Manager (aka PRSM) 9.2(.1-2) and earlier allow remote attackers to inject arbitrary web script or HTML via unspecified parameters, aka Bug ID CSCun50687.
Ссылки
- Vendor Advisory
- Vendor Advisory
- Vendor Advisory
- Vendor Advisory
Уязвимые конфигурации
Конфигурация 1Версия до 9.2.1-2 (включая)
Одно из
cpe:2.3:a:cisco:prime_security_manager:*:*:*:*:*:*:*:*
cpe:2.3:a:cisco:prime_security_manager:9.0:*:*:*:*:*:*:*
cpe:2.3:a:cisco:prime_security_manager:9.1:*:*:*:*:*:*:*
cpe:2.3:a:cisco:prime_security_manager:9.1.2-29:*:*:*:*:*:*:*
cpe:2.3:a:cisco:prime_security_manager:9.1.2-42:*:*:*:*:*:*:*
cpe:2.3:a:cisco:prime_security_manager:9.1.3-8:*:*:*:*:*:*:*
cpe:2.3:a:cisco:prime_security_manager:9.1.3-10:*:*:*:*:*:*:*
cpe:2.3:a:cisco:prime_security_manager:9.1.3-13:*:*:*:*:*:*:*
cpe:2.3:a:cisco:prime_security_manager:9.2:*:*:*:*:*:*:*
cpe:2.3:a:cisco:prime_security_manager:9.2.1-1:*:*:*:*:*:*:*
EPSS
Процентиль: 51%
0.00277
Низкий
4.3 Medium
CVSS2
Дефекты
CWE-79
Связанные уязвимости
github
больше 3 лет назад
Multiple cross-site scripting (XSS) vulnerabilities in dashboard-related HTML documents in Cisco Prime Security Manager (aka PRSM) 9.2(.1-2) and earlier allow remote attackers to inject arbitrary web script or HTML via unspecified parameters, aka Bug ID CSCun50687.
EPSS
Процентиль: 51%
0.00277
Низкий
4.3 Medium
CVSS2
Дефекты
CWE-79