CVE-2014-0670

2014-01-2202:00:00

cisco

www.cve.org

AI Score

5.8

Confidence

High

EPSS

0.002

Percentile

58.9%

JSON

Cross-site scripting (XSS) vulnerability in the Search and Play interface in Cisco MediaSense allows remote attackers to inject arbitrary web script or HTML via an unspecified parameter, aka Bug ID CSCum16686.

References

osvdb.org/102319

secunia.com/advisories/56563

tools.cisco.com/security/center/content/CiscoSecurityNotice/CVE-2014-0670

tools.cisco.com/security/center/viewAlert.x?alertId=32514

www.securityfocus.com/bid/65053

www.securitytracker.com/id/1029667

exchange.xforce.ibmcloud.com/vulnerabilities/90615