Cross-Site Scripting Vulnerability in Cisco Unified Operations Manager
CVE-2013-3416

Currently unrated

Key Information:

Vendor: Cisco
Status: Unified Service Monitor; Unified Operations Manager
Vendor: CVE Published:; 10 July 2013

What is CVE-2013-3416?

A Cross-Site Scripting (XSS) vulnerability exists in the web framework of Cisco Unified Operations Manager and Unified Service Monitor. This security flaw allows remote attackers to inject arbitrary web scripts or HTML through an unspecified parameter, potentially compromising user data and application integrity. Identified in Bug IDs CSCuh47574 and CSCuh95997, this vulnerability emphasizes the need for robust security measures in communication management systems.

References

http://www.securitytracker.com/id/1028765

vdb-entryx_refsource_SECTRACK

http://www.securitytracker.com/id/1028766

vdb-entryx_refsource_SECTRACK

http://tools.cisco.com/security/center/content/CiscoSecur...

vendor-advisoryx_refsource_CISCO

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Jul 10, 2013
Vulnerability Reserved
May 6, 2013