Lucene search
HistoryJul 23, 2013 - 5:20 p.m.
CVE-2013-3440
cve-2013-3440
xss
cisco
unified operations manager
administrative web interface
remote attackers
web script
html
cookies
security vulnerability
nvd
6 Medium
AI Score
Confidence
High
4.3 Medium
CVSS2
Access Vector
Access Complexity
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:M/Au:N/C:N/I:P/A:N
0.003 Low
EPSS
Percentile
65.2%
Multiple cross-site scripting (XSS) vulnerabilities in the administrative web interface in Cisco Unified Operations Manager allow remote attackers to inject arbitrary web script or HTML, and obtain improperly secured cookies, via unspecified vectors, aka Bug ID CSCud80186.
Affected configurations
Node
ciscounified_operations_managerMatch-
| CPE | Name | Operator | Version |
|---|---|---|---|
| cisco:unified_operations_manager | cisco unified operations manager | eq | - |
Related
nvd
nvd
CVE-2013-3440
2013-07-23 17:20:53
cisco
cisco
Cisco Unified Operations Manager Cross-Site Scripting Vulnerability
2013-07-23 16:04:15
prion
prion
Cross site scripting
2013-07-23 17:20:00
cvelist
cvelist
CVE-2013-3440
2013-07-23 17:00:00
6 Medium
AI Score
Confidence
High
4.3 Medium
CVSS2
Access Vector
Access Complexity
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:M/Au:N/C:N/I:P/A:N
0.003 Low
EPSS
Percentile
65.2%
Related for CVE-2013-3440