The vulnerability of the microprogramming software of Cisco Catalyst 2940 allows a attacker to carry out XSS attacks.

🗓️ 22 Jul 2022 00:00:00Reported by FSTEC of Russia — Information Security Threat DatabaseType

bdu_fstec

bdu_fstec🔗 bdu.fstec.ru👁 2 Views

Cisco Catalyst 2940 microprogramming software has a vulnerability that enables remote cross site scripting due to lack of protections.

Reporter	Title	Published	Views	Family All 11
ATTACKERKB	CVE-2022-31734	20 Jun 202210:15	–	attackerkb
CNNVD	Cisco Catalyst 跨站脚本漏洞	14 Jun 202200:00	–	cnnvd
CNVD	Cisco Catalyst 2940 Series Cross-Site Scripting Vulnerability	20 Jun 202200:00	–	cnvd
CVE	CVE-2022-31734	20 Jun 202209:50	–	cve
Cvelist	CVE-2022-31734	20 Jun 202209:50	–	cvelist
Japan Vulnerability Notes	JVN#94363766: Cisco Catalyst 2940 Series Switches vulnerable to cross-site scripting	14 Jun 202200:00	–	jvn
Japan Vulnerability Notes	Cisco Catalyst 2940 Series Switches vulnerable to cross-site scripting	14 Jun 202204:46	–	jvn
NVD	CVE-2022-31734	20 Jun 202210:15	–	nvd
Prion	Cross site scripting	20 Jun 202210:15	–	prion
Positive Technologies	PT-2022-3792 · Cisco · Cisco Catalyst 2940 Series Switches	2 Jun 202200:00	–	ptsecurity

Source	Link
nvd	www.nvd.nist.gov/vuln/detail/CVE-2022-31734
jvn	www.jvn.jp/en/jp/JVN94363766/index.html
cisco	www.cisco.com/c/en/us/obsolete/switches/cisco-catalyst-2940-series-switches.html
web	www.web.nvd.nist.gov/view/vuln/detail

22 Jul 2022 00:00Current

5.9Medium risk

Vulners AI Score5.9

CVSS 25.8

CVSS 36.1

EPSS0.00779

Cisco Catalyst 2940 microprogramming software remote scripting website protections