Cross-Site Scripting Vulnerabilities in Cisco Unified Operations Manager
CVE-2013-3440

Currently unrated

Key Information:

Vendor: Cisco
Status: Unified Operations Manager
Vendor: CVE Published:; 23 July 2013

What is CVE-2013-3440?

Multiple cross-site scripting vulnerabilities in the administrative web interface of Cisco Unified Operations Manager can potentially allow remote attackers to inject arbitrary web scripts or HTML. This could lead to exposure of sensitive information, such as improperly secured cookies, through unspecified vectors.

References

http://tools.cisco.com/security/center/content/CiscoSecur...

vendor-advisoryx_refsource_CISCO

http://tools.cisco.com/security/center/viewAlert.x?alertI...

x_refsource_CONFIRM

http://www.securityfocus.com/bid/61414

vdb-entryx_refsource_BID

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Jul 23, 2013
Vulnerability Reserved
May 6, 2013