2 matches found
CVE-2021-1475
Multiple vulnerabilities in the Admin audit log export feature and Scheduled Reports feature of Cisco Umbrella could allow an authenticated, remote attacker to perform formula and link injection attacks on an affected device. For more information about these vulnerabilities, see the Details secti...
CVE-2021-1475
CVE-2021-1475 affects Cisco Umbrella in the Admin audit log export and Scheduled Reports features. The root cause is improper neutralization of user-supplied input, enabling an authenticated, remote attacker to perform link and CSV/formula injections in reports. The advisory notes that Cisco rele...