Arbitrary Web Script Injection Vulnerability in Cisco Unified Email Interaction Manager and Unified Web Interaction Manager 11.0(1)

Arbitrary Web Script Injection Vulnerability in Cisco Unified Email Interaction Manager and Unified Web Interaction Manager 11.0(1)

CVE-2015-6416 · MEDIUM Severity

AV:N/AC:M/AU:N/C:N/I:P/A:N

Cross-site scripting (XSS) vulnerability in Cisco Unified Email Interaction Manager and Unified Web Interaction Manager 11.0(1) allows remote attackers to inject arbitrary web script or HTML a crafted URL, aka Bug ID CSCuw24479.

Learn more about our Cis Benchmark Audit For Cisco.