CVE-2015-0714

Multiple cross-site scripting (XSS) vulnerabilities in Cisco Finesse Server 10.0(1), 10.5(1), 10.6(1), and 11.0(1) allow remote attackers to inject arbitrary web script or HTML via unspecified parameters, aka Bug ID CSCut53595.
Configurations

Configuration 1 (hide)

OR cpe:2.3:a:cisco:finesse:10.0\(1\)_base:*:*:*:*:*:*:*
cpe:2.3:a:cisco:finesse:10.5\(1\)_base:*:*:*:*:*:*:*
cpe:2.3:a:cisco:finesse:10.6\(1\)_base:*:*:*:*:*:*:*
cpe:2.3:a:cisco:finesse:11.0\(1\)_base:*:*:*:*:*:*:*

History

No history.

Information

Published : 2015-05-02 14:59

Updated : 2024-02-04 18:35


NVD link : CVE-2015-0714

Mitre link : CVE-2015-0714

CVE.ORG link : CVE-2015-0714


JSON object : View

Products Affected

cisco

  • finesse
CWE
CWE-79

Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')