XSS in Cisco Unified Computing System Director

CVE-2018-15406

A vulnerability in the web-based management interface of Cisco UCS Director could allow an unauthenticated, remote attacker to conduct a stored cross-site scripting (XSS) attack against a user of the web-based management interface of an af…

Vulnerability class: XSS (Cross-Site Scripting)

EPSS: 0.004 (58.5th percentile) — read the EPSS interpretation.