XSS in Cisco Prime_collaboration
CVE-2013-6690
Multiple cross-site scripting (XSS) vulnerabilities in the web interface in the Assurance component in Cisco Prime Collaboration allow remote attackers to inject arbitrary web script or HTML via unspecified vectors, aka Bug IDs CSCui92643…
Vulnerability class: XSS (Cross-Site Scripting)
EPSS: 0.004 (59.3th percentile) — read the EPSS interpretation.
Affected products
- Cisco Prime_collaboration
- N/a — versions n/a
Weakness classification (CWE)
References
- psirt@cisco.com (x_refsource_CONFIRM, Vendor Advisory)
- 55954 (x_refsource_SECUNIA, third-party-advisory)
- 1029425 (Third Party Advisory, VDB Entry, vdb-entry, x_refsource_SECTRACK)
- 20131203 Cisco Prime Collaboration Assurance Cross-Site Scripting Vulnerability (x_refsource_CISCO, vendor-advisory, Vendor Advisory)