CVE-2018-0406

🗓️ 01 Aug 2018 20:00:00Reported by ciscoType

A vulnerability in Cisco Web Security Appliance allows remote attacker to conduct XSS attac

Reporter	Title	Published	Views	Family All 8
BDU FSTEC	The vulnerability of the Cisco Web Security Appliance’s web interface allows a hacker to inject arbitrary code into the web page that is uploaded.	13 Dec 201800:00	–	bdu_fstec
Cisco	Cisco Web Security Appliance Reflected and Document Object Model-Based Cross-Site Scripting Vulnerability	1 Aug 201816:00	–	cisco
CNVD	Cisco Web Security Appliance Cross-Site Scripting Vulnerability (CNVD-2018-14779)	2 Aug 201800:00	–	cnvd
CVE	CVE-2018-0406	1 Aug 201820:00	–	cve
EUVD	EUVD-2018-1229	7 Oct 202500:30	–	euvd
NVD	CVE-2018-0406	1 Aug 201820:29	–	nvd
Prion	Cross site scripting	1 Aug 201820:29	–	prion
Vulnrichment	CVE-2018-0406	1 Aug 201820:00	–	vulnrichment

[
  {
    "product": "Cisco Web Security Appliance unknown",
    "vendor": "n/a",
    "versions": [
      {
        "status": "affected",
        "version": "Cisco Web Security Appliance unknown"
      }
    ]
  }
]

Source	Link
tools	www.tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20180801-wsa-xss
securitytracker	www.securitytracker.com/id/1041406
securityfocus	www.securityfocus.com/bid/104945

03 Aug 2018 09:57Current

6Medium risk

Vulners AI Score6

EPSS0.0017

CWE-79