Published: 06/09/2013 Updated: 06/09/2013

CVSS v2 Base Score: 4.3 | Impact Score: 2.9 | Exploitability Score: 8.6

VMScore: 383

Vector: AV:N/AC:M/Au:N/C:N/I:P/A:N

Multiple cross-site scripting (XSS) vulnerabilities in Health Monitor Login pages in Cisco Prime Network Control System (NCS) and Wireless Control System (WCS) allow remote malicious users to inject arbitrary web script or HTML via unspecified vectors, aka Bug ID CSCud18375.

Vulnerable Product	Search on Vulmon	Subscribe to Product
cisco wireless control system
cisco prime network control system -

A vulnerability in the health monitor login page of Cisco Prime Network Control System (NCS) could allow an unauthenticated, remote attacker to conduct cross-site (XSS) scripting attacks The vulnerability is due to insufficient input validation An attacker could exploit this vulnerability by convincing the user of the affected device to follow a ...

CWE-79 http://www.kb.cert.org/vuls/id/830316 https://nvd.nist.gov http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/Cisco-SA-20130909-CVE-2012-5990 https://www.kb.cert.org/vuls/id/830316

Get Started

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Twitter Reddit Linkedin Facebook

CVE-2012-5990

Vulnerability Summary

Vendor Advisories

References

Vulmon Search

About

Products

Connect