CVE-2017-6761

Cisco Finesse’s web-based management interface (versions 10.6(1) and 11.5(1)) is affected by a cross-site scripting (XSS) vulnerability due to insufficient validation of user-supplied input. An unauthenticated, remote attacker could lure a user into clicking a crafted link, enabling execution of ...