CVE-2015-4220

Cross-site scripting (XSS) vulnerability in Cisco Unified Presence Server 9.1(1) allows remote attackers to inject arbitrary web script or HTML via an unspecified value, aka Bug ID CSCuq03773.
References
Link Resource
http://tools.cisco.com/security/center/viewAlert.x?alertId=39504 Vendor Advisory
http://www.securityfocus.com/bid/75407 Third Party Advisory VDB Entry
http://www.securitytracker.com/id/1032717 Third Party Advisory VDB Entry
Configurations

Configuration 1 (hide)

cpe:2.3:a:cisco:unified_presence_server:9.1\(1\):*:*:*:*:*:*:*

History

No history.

Information

Published : 2015-06-25 16:59

Updated : 2024-02-04 18:53


NVD link : CVE-2015-4220

Mitre link : CVE-2015-4220

CVE.ORG link : CVE-2015-4220


JSON object : View

Products Affected

cisco

  • unified_presence_server
CWE
CWE-79

Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')