A vulnerability in the URL redirection of Cisco Intelligent Automation for Cloud could allow an authenticated, remote malicious user to obtain sensitive information. The vulnerability is due to improper sanitization of redirect URLs. An attacker could exploit this vulnerability by submitting crafted URLs. Cisco has confirmed the vulnerability in a security notice; however, software updates are not available. After a successful exploit, the attacker could redirect a targeted user to a malicious site in an attempt to obtain sensitive information.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
cisco cloud portal - |