Cross-Site Scripting Vulnerability in Cisco Unified Communications Manager
CVE-2018-0340
5.4MEDIUM
Key Information:
- Vendor
Cisco
- Vendor
- CVE Published:
- 7 June 2018
What is CVE-2018-0340?
A vulnerability in the web framework of Cisco Unified Communications Manager enables an authenticated, remote attacker to execute cross-site scripting attacks through insufficient input validation of specific parameters. By manipulating user access to a malicious link or intercepting requests, attackers can inject harmful scripts. This exploitation could lead to arbitrary code execution within the context of the affected site, compromising sensitive information accessible from the browser.
Affected Version(s)
Cisco Unified Communications Manager unknown Cisco Unified Communications Manager unknown