31 matches found
EUVD-2020-24407
Malware in sbrugna...
The vulnerability in the web interface of the Cisco Jabber Guest software allows a attacker to execute arbitrary code in the context of the current user or disclose sensitive information.
The vulnerability in the Cisco Jabber Guest software’s web interface exists due to the lack of measures taken to protect the structure of the web page. Exploiting this vulnerability allows a malicious actor to execute arbitrary code in the context of the current user, or to disclose sensitive...
Cisco Jabber Guest WEB Interface Cross-Site Scripting Vulnerability
Cisco Jabber Guest is a consumer-to-business C2B solution. A cross-site scripting vulnerability exists in the Cisco Jabber Guest WEB interface, which can be exploited by remote attackers to inject malicious script or HTML code that can be used to obtain sensitive information or hijack user sessio...
CVE-2020-3136
A vulnerability in the web-based management interface of Cisco Jabber Guest could allow an unauthenticated, remote attacker to conduct a cross-site scripting XSS attack against a user of the web-based management interface of an affected device. The vulnerability exists because the web-based...
CVE-2020-3136
A vulnerability in the web-based management interface of Cisco Jabber Guest could allow an unauthenticated, remote attacker to conduct a cross-site scripting XSS attack against a user of the web-based management interface of an affected device. The vulnerability exists because the web-based...
Cross site scripting
A vulnerability in the web-based management interface of Cisco Jabber Guest could allow an unauthenticated, remote attacker to conduct a cross-site scripting XSS attack against a user of the web-based management interface of an affected device. The vulnerability exists because the web-based...
CVE-2020-3136
CVE-2020-3136 refers to a cross-site scripting vulnerability in Cisco Jabber Guest’s web-based management interface. The issue arises from improper validation of user-supplied input, enabling an unauthenticated, remote attacker to persuade a user to click a malicious link and execute script code ...
CVE-2020-3136 Cisco Jabber Guest Cross-Site Scripting Vulnerability
A vulnerability in the web-based management interface of Cisco Jabber Guest could allow an unauthenticated, remote attacker to conduct a cross-site scripting XSS attack against a user of the web-based management interface of an affected device. The vulnerability exists because the web-based...
CVE-2020-3136 Cisco Jabber Guest Cross-Site Scripting Vulnerability
A vulnerability in the web-based management interface of Cisco Jabber Guest could allow an unauthenticated, remote attacker to conduct a cross-site scripting XSS attack against a user of the web-based management interface of an affected device. The vulnerability exists because the web-based...
Cisco Jabber Guest Cross-Site Scripting Vulnerability
A vulnerability in the web-based management interface of Cisco Jabber Guest could allow an unauthenticated, remote attacker to conduct a cross-site scripting XSS attack against a user of the web-based management interface of an affected device. The vulnerability exists because the web-based...
CVE-2017-6762
A vulnerability in the web-based management interface of Cisco Jabber Guest Server 10.69, 11.00, and 11.01 could allow an unauthenticated, remote attacker to conduct a cross-site scripting XSS attack against a user of the web-based management interface of the affected software. The vulnerability ...
Cross site scripting
A vulnerability in the web-based management interface of Cisco Jabber Guest Server 10.69, 11.00, and 11.01 could allow an unauthenticated, remote attacker to conduct a cross-site scripting XSS attack against a user of the web-based management interface of the affected software. The vulnerability ...
Cisco Jabber Guest Server Cross-Site Scripting Vulnerability
Cisco Jabber Guest Server is a suite of software that allows users to interact in real time with employees of the organization. A cross-site scripting vulnerability exists in the Cisco Jabber Guest Server WEB script, which allows remote attackers to exploit the vulnerability to inject malicious...
CVE-2016-9224
A vulnerability in the Cisco Jabber Guest Server could allow an unauthenticated, remote attacker to initiate connections to arbitrary hosts. More Information: CSCvc31635. Known Affected Releases: 10.69. Known Fixed Releases: 11.00...
Design/Logic Flaw
A vulnerability in the Cisco Jabber Guest Server could allow an unauthenticated, remote attacker to initiate connections to arbitrary hosts. More Information: CSCvc31635. Known Affected Releases: 10.69. Known Fixed Releases: 11.00...
CVE-2016-9224
A vulnerability in the Cisco Jabber Guest Server could allow an unauthenticated, remote attacker to initiate connections to arbitrary hosts. More Information: CSCvc31635. Known Affected Releases: 10.69. Known Fixed Releases: 11.00...
CVE-2016-9224
Cisco Jabber Guest Server exposes an unauthenticated remote vector that enables connections to arbitrary hosts due to insufficient access control for HTTP traffic. Affected release: 10.6(9); fixed in 11.0(0). Advisory and public details (Cisco SA 2016-12-21) describe a URL-based vulnerability tha...
Cisco Jabber Guest Server HTTP URL Redirection Vulnerability
A vulnerability in the Cisco Jabber Guest Server could allow an unauthenticated, remote attacker to initiate connections to arbitrary hosts. The vulnerability is due to insufficient access control for HTTP traffic directed to the Cisco Jabber Guest Server. An attacker could exploit this...
Cisco Expressway 8.8.1 Internal Scanning
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA256 Advisory ID: SYSS-2016-115 Product: Expressway Manufacturer: Cisco Affected Versions: below X8.9 Tested Versions: X8.8.1 Vulnerability Type: Improper Input Validation CWE-20 Risk Level: Medium Solution Status: Fixed Manufacturer Notification:...
Cisco Jabber Guest Server HTTP HOST Parameter Cross-Site Scripting Vulnerability
Cisco Jabber Guest is a consumer-to-business C2B solution. A cross-site scripting vulnerability in Cisco Jabber Guest's handling of the HTTP HOST parameter allows remote attackers to exploit the vulnerability to inject malicious script or HTML code, which can be used to gain access to sensitive...