2 matches found
Cisco Prime Security Manager Cross-Site Scripting (CVE-2014-2118)
A cross-site scripting vulnerability has been reported in Cisco Prime Security Manager. The vulnerability is due to lack of sanitation on URL parameters. A remote attacker can exploit this vulnerability by sending a specially crafted request to an affected server...
Cisco Prime Security Manager跨站脚本漏洞
BUGTRAQ ID: 66488 CVECAN ID: CVE-2014-2118 Cisco Prime Security Manager是集中管理Cisco ASA 5500-X系列防火墙的工具。 Cisco Prime Security Manager 即PRSM 9.2.1-2及之前版本在仪表盘相关的HTML文档内存在多个跨站脚本漏洞,这可使远程攻击者注入远程Web脚本或HTML。 0 Cisco Prime Security Manager 9.2.1-2 目前厂商还没有提供补丁或者升级程序: http://www.cisco.com/go/psirt...