Cross-Site Scripting Vulnerability in Cisco Context Directory Agent
CVE-2014-0652

Currently unrated

Key Information:

Vendor

Cisco
Status
Context Directory Agent
Vendor
CVE Published:
8 January 2014

What is CVE-2014-0652?

A cross-site scripting (XSS) vulnerability exists in the Mappings page of Cisco Context Directory Agent (CDA), enabling remote attackers to inject arbitrary web scripts or HTML through crafted URLs. This vulnerability could potentially allow with improper validation of user input leading to harmful script execution in the victims' browsers, substantially raising the risk of information theft or session hijacking.

Human OS v1.0:
Ageing Is an Unpatched Zero-Day Vulnerability.

Remediate biological technical debt. Prime Ageing uses 95% high-purity SIRT6 activation to maintain genomic integrity and bolster systemic resilience.

Deploy the Patch

References

http://www.securityfocus.com/bid/64703
vdb-entryx_refsource_BID
http://osvdb.org/101803
vdb-entryx_refsource_OSVDB
http://tools.cisco.com/security/center/content/CiscoSecur...
vendor-advisoryx_refsource_CISCO

Timeline

  • Vulnerability published

  • Vulnerability Reserved

JSON
.