Lucene search
China National Vulnerability DatabaseCNVD-2022-04813HistoryJan 18, 2022 - 12:00 a.m.
Cisco Security Manager Cross-Site Scripting Vulnerability (CNVD-2022-04813)
2022-01-1800:00:00
China National Vulnerability Database
www.cnvd.org.cn
8
cisco
security manager
cross-site scripting
vulnerability
web-based management
user input
data handling
arbitrary script code
browser-based information
cnvd-2022-04813
EPSS
0.001
Percentile
50.1%
Cisco Security Manager (CSM) is a set of enterprise-class management applications from Cisco, which is mainly used to configure firewall, VPN and intrusion protection security services on Cisco networks and security devices.A cross-site scripting vulnerability exists in Cisco Security Manager, which stems from the product’s Web-based management interface not effectively handling special characters for user input data. Web-based management interface does not effectively handle special characters for user input data. An attacker could execute arbitrary script code in the context of the interface or access sensitive, browser-based information through this vulnerability.
Related
cve
cve
CVE-2022-20644
2022-01-14 05:15:10
nvd
nvd
CVE-2022-20644
2022-01-14 05:15:10
cvelist
cvelist
CVE-2022-20644 Cisco Security Manager Cross-Site Scripting Vulnerabilities
2022-01-14 05:00:55
prion
prion
Cross site scripting
2022-01-14 05:15:00
cisco
cisco
Cisco Security Manager Cross-Site Scripting Vulnerabilities
2022-01-12 16:00:00