Recent Vulnerabilities Product List Research Posts Trends Blog About Contact

Published: 04/06/2015 Updated: 04/01/2017

CVSS v2 Base Score: 4.3 | Impact Score: 2.9 | Exploitability Score: 8.6

VMScore: 383

Vector: AV:N/AC:M/Au:N/C:N/I:P/A:N

Multiple cross-site scripting (XSS) vulnerabilities in the administrative web interface in the Management Center component in Cisco FireSIGHT System Software 6.0.0 allow remote malicious users to inject arbitrary web script or HTML via unspecified fields, aka Bug IDs CSCus93566, CSCut31557, and CSCut47196.

Vulnerable Product	Search on Vulmon	Subscribe to Product
cisco firesight system software 6.0.0

Multiple vulnerabilities in the administrative web interface of the Cisco FireSIGHT Management Center could allow an attacker to conduct both cross-site scripting (XSS) and also arbitrary HTML command injection attacks These vulnerabilities are due to improper user input validation An attacker could exploit this vulnerability by crafting input ...

CWE-79 http://tools.cisco.com/security/center/viewAlert.x?alertId=39171 http://www.securitytracker.com/id/1032482 https://nvd.nist.gov http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/Cisco-SA-20150603-CVE-2015-0766

Get Started

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

Home Recent Vulnerabilities Product List Vendor List Research Posts Trends Blog About Contact

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Twitter Reddit Linkedin Facebook

CVE-2015-0766

Vulnerability Summary

Vendor Advisories

References

Vulmon Search

About

Products

Connect