Cross-Site Scripting Vulnerabilities in Cisco Prime Network Control System and Wireless Control System
CVE-2012-5990

Currently unrated

Key Information:

Vendor: Cisco
Status: Wireless Control System; Prime Network Control System
Vendor: CVE Published:; 6 September 2013

Summary

Multiple cross-site scripting (XSS) vulnerabilities exist in the login pages of Cisco's Prime Network Control System and Wireless Control System. These vulnerabilities allow remote attackers to inject arbitrary web scripts or HTML by leveraging unspecified vectors. Successful exploitation may lead to unauthorized actions on behalf of affected users and compromise sensitive information.

References

http://www.kb.cert.org/vuls/id/830316

third-party-advisoryx_refsource_CERT-VN

Timeline

Vulnerability Reserved
Oct 3, 2022
Vulnerability published
Sep 6, 2013