CVE-2014-3408

2014-10-1901:00:00

cisco

www.cve.org

AI Score

5.7

Confidence

High

EPSS

0.004

Percentile

72.3%

JSON

Cross-site scripting (XSS) vulnerability in the web framework in Cisco Prime Optical 10 allows remote attackers to inject arbitrary web script or HTML via an unspecified parameter, aka Bug ID CSCuq80763.

References

tools.cisco.com/security/center/content/CiscoSecurityNotice/CVE-2014-3408

tools.cisco.com/security/center/viewAlert.x?alertId=36099

www.securityfocus.com/bid/70594