Multiple Cross-Site Scripting Vulnerabilities in Cisco Unity Express
CVE-2013-1114

Currently unrated

Key Information:

Vendor: Cisco
Status: Unity Express Software
Vendor: CVE Published:; 13 February 2013

Summary

Multiple cross-site scripting (XSS) vulnerabilities exist in Cisco Unity Express prior to version 8.0. These vulnerabilities enable remote attackers to inject arbitrary web scripts or HTML through unspecified vectors, potentially compromising the security of affected systems. It is crucial for users of Cisco Unity Express to evaluate their current version and apply the necessary patches to mitigate these security risks.

References

http://tools.cisco.com/security/center/content/CiscoSecur...

vendor-advisoryx_refsource_CISCO

EPSS Score

7% chance of being exploited in the next 30 days.

Timeline

Vulnerability Reserved
Oct 3, 2022
Vulnerability published
Feb 13, 2013