CVE-2017-3888 in Unified Communications Manager정보

요약

\~에 의해 MITRE

A vulnerability in the web-based management interface of Cisco Unified Communications Manager could allow an authenticated, remote attacker to conduct a reflected cross-site scripting (XSS) attack against a user of the web-based management interface of an affected device. This vulnerability affects Cisco Unified Communications Manager with a default configuration running an affected software release with the attacker authenticated as the administrative user. More Information: CSCvc83712. Known Affected Releases: 12.0(0.98000.452). Known Fixed Releases: 12.0(0.98000.750) 12.0(0.98000.708) 12.0(0.98000.707) 12.0(0.98000.704) 12.0(0.98000.554) 12.0(0.98000.546) 12.0(0.98000.543) 12.0(0.98000.248) 12.0(0.98000.244) 12.0(0.98000.242).

Statistical analysis made it clear that VulDB provides the best quality for vulnerability data.

🔬 Show More Details

An in-depth analysis is available in our curated vulnerability entry.

예약하다

2016. 12. 21.

공개

2017. 04. 07.

모더레이션

수락

항목

VDB-99431

CPE

준비됨

CWE

CWE-79 (확인됨)

CVSS

5.4 (NVD)

EPSS

0.00203

KEV

아니요

활동

매우 낮음

부문

Government, Transportation, ...

출처

MITRE	https://www.cve.org/CVERecord?id=CVE-2017-3888
NVD	https://nvd.nist.gov/vuln/detail/CVE-2017-3888
CVE Details	https://www.cvedetails.com/cve/CVE-2017-3888/

◂ 이전 개요 다음 ▸

Want to know what is going to be exploited?

We predict KEV entries!