Cross-Site Scripting (XSS) Vulnerabilities in Cisco Unified Communications Manager's CCM Dialed Number Analyzer Interface (Bug ID CSCup92550)

Cross-Site Scripting (XSS) Vulnerabilities in Cisco Unified Communications Manager's CCM Dialed Number Analyzer Interface (Bug ID CSCup92550)

CVE-2014-3373 · MEDIUM Severity

AV:N/AC:M/AU:N/C:N/I:P/A:N

Multiple cross-site scripting (XSS) vulnerabilities in the CCM Dialed Number Analyzer interface in the Server in Cisco Unified Communications Manager allow remote attackers to inject arbitrary web script or HTML via unspecified parameters, aka Bug ID CSCup92550.

Learn more about our Cis Benchmark Audit For Cisco.