Lucene search
China National Vulnerability DatabaseCNVD-2022-04815HistoryJan 18, 2022 - 12:00 a.m.
Cisco Security Manager Cross-Site Scripting Vulnerability
2022-01-1800:00:00
China National Vulnerability Database
www.cnvd.org.cn
7
cisco
security manager
cross-site scripting
vulnerability
firewall
vpn
intrusion protection
web-based management interface
special characters
user input data
arbitrary script code
sensitive information
browser-based information
EPSS
0.001
Percentile
50.1%
Cisco Security Manager (CSM) is a set of enterprise-level management applications from Cisco, which are used to configure firewall, VPN, and intrusion protection security services on Cisco networks and security devices. cross-site scripting vulnerability exists in Cisco Security Manager, which stems from the product’s Web-based management interface not effectively handling special characters for user input data. Web-based management interface does not effectively handle special characters for user input data. An attacker could execute arbitrary script code in the context of the interface or access sensitive, browser-based information through this vulnerability.
Related
nvd
nvd
CVE-2022-20642
2022-01-14 05:15:10
cve
cve
CVE-2022-20642
2022-01-14 05:15:10
prion
prion
Cross site scripting
2022-01-14 05:15:00
cvelist
cvelist
CVE-2022-20642 Cisco Security Manager Cross-Site Scripting Vulnerabilities
2022-01-14 05:00:35
cisco
cisco
Cisco Security Manager Cross-Site Scripting Vulnerabilities
2022-01-12 16:00:00