2 matches found
CVE-2018-15400
The CVE-2018-15400 vulnerability affects Cisco Cloud Services Platform 2100, where the web-based management interface does not adequately validate user-supplied input, allowing an unauthenticated, remote attacker to perform a cross-site scripting (XSS) attack by convincing a user to click a malic...
CVE-2018-0454
Cisco Cloud Services Platform 2100’s web-based management interface is affected by a command-injection vulnerability caused by insufficient input validation. An authenticated, remote attacker could exploit this to run customized commands. CVSSv3 base score is 8.8 (HIGH) with network access, low a...