2 matches found
Cisco Unified Communications Manager Multiple Reflected XSS
According to its self-reported version, the remote Cisco Unified Communications Manager CUCM device is affected by multiple reflected cross-site scripting vulnerabilities due to insufficient input validation of certain parameters passed via HTTP GET or POST methods. %NASLMINLEVEL 70300 C Tenable...
CVE-2014-3372
CVE-2014-3372 affects Cisco Unified Communications Manager (CUCM) Server, specifically the CCM reports interface. The vulnerability is due to insufficient input validation of parameters passed via HTTP GET/POST, enabling multiple reflected XSS attacks. Impact is remote, unauthenticated exploitati...