CVE-2014-3365

Currently unrated

Key Information:

Vendor: Cisco
Status: Prime Security Manager
Vendor: CVE Published:; 12 February 2015

Summary

Multiple cross-site scripting (XSS) vulnerabilities in Cisco Prime Security Manager (PRSM) 9.2(.1-2) and earlier allow remote attackers to inject arbitrary web script or HTML via crafted input to the (1) Dashboard or (2) Configure Realm page, aka Bug ID CSCuo94808.

References

http://tools.cisco.com/security/center/viewAlert.x?alertI...

x_refsource_CONFIRM

http://tools.cisco.com/security/center/content/CiscoSecur...

vendor-advisoryx_refsource_CISCO

https://exchange.xforce.ibmcloud.com/vulnerabilities/100756

vdb-entryx_refsource_XF

Timeline

Vulnerability published
Feb 12, 2015
Vulnerability Reserved
May 7, 2014