Lucene search
CiscoCVE-2013-3440HistoryJul 23, 2013 - 5:20 p.m.
CVE-2013-3440
2013-07-2317:20:53
CWE-79
cisco
web.nvd.nist.gov
24
cve-2013-3440
xss
cisco
unified operations manager
administrative web interface
remote attackers
web script
html
cookies
security vulnerability
nvd
CVSS2
4.3
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:M/Au:N/C:N/I:P/A:N
AI Score
6
Confidence
High
EPSS
0.003
Percentile
65.3%
Multiple cross-site scripting (XSS) vulnerabilities in the administrative web interface in Cisco Unified Operations Manager allow remote attackers to inject arbitrary web script or HTML, and obtain improperly secured cookies, via unspecified vectors, aka Bug ID CSCud80186.
Affected configurations
Node
ciscounified_operations_managerMatch-
| Vendor | Product | Version | CPE |
|---|---|---|---|
| cisco | unified_operations_manager | - | cpe:/a:cisco:unified_operations_manager:-::: |
Related
nvd
nvd
CVE-2013-3440
2013-07-23 17:20:53
cisco
cisco
Cisco Unified Operations Manager Cross-Site Scripting Vulnerability
2013-07-23 16:04:15
prion
prion
Cross site scripting
2013-07-23 17:20:00
cvelist
cvelist
CVE-2013-3440
2013-07-23 17:00:00
CVSS2
4.3
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:M/Au:N/C:N/I:P/A:N
AI Score
6
Confidence
High
EPSS
0.003
Percentile
65.3%
Related for CVE-2013-3440