Published: 20/09/2014 Updated: 29/08/2017

CVSS v2 Base Score: 4.3 | Impact Score: 2.9 | Exploitability Score: 8.6

VMScore: 383

Vector: AV:N/AC:M/Au:N/C:N/I:P/A:N

Subscribe to Cisco Nexus 1000v Intercloud

Cross-site scripting (XSS) vulnerability in the vCloud Director component in Cisco Nexus 1000V InterCloud for VMware allows remote malicious users to inject arbitrary web script or HTML via an unspecified value, aka Bug ID CSCuq90524.

Vulnerable Product	Search on Vulmon	Subscribe to Product
cisco cisco nexus 1000v intercloud -

A vulnerability in the VMware vCloud Director of the Cisco Nexus 1000V could allow an unauthenticated, remote attacker to conduct a reflected cross-site scripting (XSS) attack The vulnerability is due to insufficient input validation of a user-supplied value An attacker could exploit this vulnerability by convincing a user to click a specific li ...

CWE-79 http://tools.cisco.com/security/center/content/CiscoSecurityNotice/CVE-2014-3367 http://www.securitytracker.com/id/1030881 http://www.securityfocus.com/bid/70010 http://secunia.com/advisories/61426 https://exchange.xforce.ibmcloud.com/vulnerabilities/96126 https://nvd.nist.gov http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/Cisco-SA-20140922-CVE-2014-3367

Get Started

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Twitter Reddit Linkedin Facebook

CVE-2014-3367

Vulnerability Summary

Vendor Advisories

References

Vulmon Search

About

Products

Connect