CVE-2015-6363

Currently unrated

Key Information:

Vendor: Cisco
Status: Firesight System Software
Vendor: CVE Published:; 12 November 2015

Summary

Multiple cross-site scripting (XSS) vulnerabilities in the web framework in Cisco FireSIGHT Management Center (MC) 5.4.1.4 and 6.0.1 allow remote authenticated users to inject arbitrary web script or HTML via unspecified parameters, aka Bug ID CSCuw88396.

References

http://www.securitytracker.com/id/1034138

vdb-entryx_refsource_SECTRACK

http://tools.cisco.com/security/center/content/CiscoSecur...

vendor-advisoryx_refsource_CISCO

Timeline

Vulnerability published
Nov 12, 2015
Vulnerability Reserved
Aug 17, 2015