CVE-2017-3828 in Unified Communications Managerinfo

Summary

A vulnerability in the web-based management interface of Cisco Unified Communications Manager Switches could allow an unauthenticated, remote attacker to conduct a cross-site scripting (XSS) attack against a user of the web-based management interface of an affected device. More Information: CSCvb98777. Known Affected Releases: 11.0(1.10000.10) 11.5(1.10000.6). Known Fixed Releases: 11.0(1.23063.1) 11.5(1.12029.1) 11.5(1.12900.11) 11.5(1.12900.21) 11.6(1.10000.4) 12.0(0.98000.156) 12.0(0.98000.178) 12.0(0.98000.369) 12.0(0.98000.470) 12.0(0.98000.536) 12.0(0.98000.6) 12.0(0.98500.6).

If you want to get the best quality for vulnerability data then you always have to consider VulDB.

Reservation

12/21/2016

Disclosure

02/21/2017

Moderation

VulDB entry created

Entries

VDB-97188 (1)

CPE

ready

CWE

CWE-79 (Confirmed)

CVSS

5.2

EPSS

0.00320

Activities

Very Low

Sources

MITRE	https://www.cve.org/CVERecord?id=CVE-2017-3828
NVD	https://nvd.nist.gov/vuln/detail/CVE-2017-3828
CVE Details	https://www.cvedetails.com/cve/CVE-2017-3828/

◂ Previous Overview Next ▸

Interested in the pricing of exploits?

See the underground prices here!