Lucene search

CiscoCVE-2013-1114

HistoryFeb 13, 2013 - 11:55 p.m.

CVE-2013-1114

2013-02-1323:55:01

CWE-79

cisco

web.nvd.nist.gov

cve-2013-1114

cisco unity express

xss

cross-site scripting

security vulnerability

bug id cscud87527

CVSS2

4.3

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:M/Au:N/C:N/I:P/A:N

AI Score

5.7

Confidence

High

EPSS

0.002

Percentile

56.1%

JSON

Multiple cross-site scripting (XSS) vulnerabilities in Cisco Unity Express before 8.0 allow remote attackers to inject arbitrary web script or HTML via unspecified vectors, aka Bug ID CSCud87527.

Affected configurations

Nvd

Node

ciscounity_express_softwareRange≤7.4

ciscounity_express_softwareMatch1.1.1

ciscounity_express_softwareMatch1.1.2

ciscounity_express_softwareMatch2.0

ciscounity_express_softwareMatch2.1

ciscounity_express_softwareMatch2.1.1

ciscounity_express_softwareMatch2.1.2

ciscounity_express_softwareMatch2.2

ciscounity_express_softwareMatch2.2.2

ciscounity_express_softwareMatch2.3

ciscounity_express_softwareMatch3.0

ciscounity_express_softwareMatch3.1

ciscounity_express_softwareMatch3.2

ciscounity_express_softwareMatch7.0

ciscounity_express_softwareMatch7.1

ciscounity_express_softwareMatch7.2

ciscounity_express_softwareMatch7.3

VendorProductVersionCPE
ciscounity_express_software*cpe:2.3:a:cisco:unity_express_software:*:*:*:*:*:*:*:*
ciscounity_express_software1.1.1cpe:2.3:a:cisco:unity_express_software:1.1.1:*:*:*:*:*:*:*
ciscounity_express_software1.1.2cpe:2.3:a:cisco:unity_express_software:1.1.2:*:*:*:*:*:*:*
ciscounity_express_software2.0cpe:2.3:a:cisco:unity_express_software:2.0:*:*:*:*:*:*:*
ciscounity_express_software2.1cpe:2.3:a:cisco:unity_express_software:2.1:*:*:*:*:*:*:*
ciscounity_express_software2.1.1cpe:2.3:a:cisco:unity_express_software:2.1.1:*:*:*:*:*:*:*
ciscounity_express_software2.1.2cpe:2.3:a:cisco:unity_express_software:2.1.2:*:*:*:*:*:*:*
ciscounity_express_software2.2cpe:2.3:a:cisco:unity_express_software:2.2:*:*:*:*:*:*:*
ciscounity_express_software2.2.2cpe:2.3:a:cisco:unity_express_software:2.2.2:*:*:*:*:*:*:*
ciscounity_express_software2.3cpe:2.3:a:cisco:unity_express_software:2.3:*:*:*:*:*:*:*

Vendor	Product	Version	CPE
cisco	unity_express_software	*	cpe:2.3:a:cisco:unity_express_software::::::::
cisco	unity_express_software	1.1.1	cpe:2.3:a:cisco:unity_express_software:1.1.1:::::::*
cisco	unity_express_software	1.1.2	cpe:2.3:a:cisco:unity_express_software:1.1.2:::::::*
cisco	unity_express_software	2.0	cpe:2.3:a:cisco:unity_express_software:2.0:::::::*
cisco	unity_express_software	2.1	cpe:2.3:a:cisco:unity_express_software:2.1:::::::*
cisco	unity_express_software	2.1.1	cpe:2.3:a:cisco:unity_express_software:2.1.1:::::::*
cisco	unity_express_software	2.1.2	cpe:2.3:a:cisco:unity_express_software:2.1.2:::::::*
cisco	unity_express_software	2.2	cpe:2.3:a:cisco:unity_express_software:2.2:::::::*
cisco	unity_express_software	2.2.2	cpe:2.3:a:cisco:unity_express_software:2.2.2:::::::*
cisco	unity_express_software	2.3	cpe:2.3:a:cisco:unity_express_software:2.3:::::::*