CVE-2017-3798
Cisco Unified Communications Manager is affected by CVE-2017-3798: a cross-site scripting (XSS) filter bypass in the web-based management interface that could allow an unauthenticated, remote attacker to run XSS in a user’s browser. Root cause: failure to properly invoke the XSS filter subsystems...