Cross-Site Scripting Vulnerabilities in Cisco FireSight Management Center
CVE-2015-6354

Currently unrated

Key Information:

Vendor
Cisco
Status
Firesight System Software
Vendor
CVE Published:
31 October 2015

Summary

Multiple cross-site scripting (XSS) vulnerabilities exist in Cisco FireSight Management Center that could allow remote authenticated users to inject arbitrary web scripts or HTML. These vulnerabilities are associated with unspecified parameters and can potentially compromise the security of the application. Monitoring for unusual behavior and applying timely security updates is essential to mitigate the risks associated with these vulnerabilities.

References

http://tools.cisco.com/security/center/content/CiscoSecur...
vendor-advisoryx_refsource_CISCO
http://www.securitytracker.com/id/1034041
vdb-entryx_refsource_SECTRACK

Timeline

  • Vulnerability published

  • Vulnerability Reserved

.