Cross-Site Scripting Vulnerabilities in Cisco Unified Communications Domain Manager
CVE-2014-8018

Currently unrated

Key Information:

Vendor: Cisco
Status: Unified Communications Domain Manager
Vendor: CVE Published:; 22 December 2014

Summary

Multiple cross-site scripting vulnerabilities exist in the Business Voice Services Manager (BVSM) pages of Cisco Unified Communications Domain Manager 8. These vulnerabilities enable remote attackers to exploit the application by injecting arbitrary web scripts or HTML through manipulated URLs. This can lead to unauthorized access and data exposure, making it imperative for users to implement appropriate security measures and updates.

References

http://tools.cisco.com/security/center/content/CiscoSecur...

vendor-advisoryx_refsource_CISCO

http://www.securitytracker.com/id/1031424

vdb-entryx_refsource_SECTRACK

http://www.securityfocus.com/bid/71771

vdb-entryx_refsource_BID

Timeline

Vulnerability published
Dec 22, 2014
Vulnerability Reserved
Oct 8, 2014