A vulnerability in the web-based management interface of Cisco IOS XE Wireless Controller software for the Catalyst 9000 Family of switches could allow an authenticated, remote malicious user to conduct a cross-site scripting (XSS) attack against another user of the web-based management interface of an affected device. The vulnerability is due to insufficient validation of user-supplied input by the web-based management interface of an affected device. An attacker could exploit this vulnerability by authenticating to the device as a high-privileged user, adding certain configurations with malicious code in one of its fields, and persuading another user to click on it. A successful exploit could allow the malicious user to execute arbitrary script code in the context of the affected interface or to access sensitive, browser-based information.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
cisco ios xe 16.6.1 |
||
cisco ios xe 16.6.3 |
||
cisco ios xe 16.8.1 |
||
cisco ios xe 16.7.1 |
||
cisco ios xe 16.6.2 |
||
cisco ios xe 16.9.1 |
||
cisco ios xe 16.8.1a |
||
cisco ios xe 16.8.1s |
||
cisco ios xe 16.8.1b |
||
cisco ios xe 16.8.2 |
||
cisco ios xe 16.7.2 |
||
cisco ios xe 16.8.1d |
||
cisco ios xe 16.7.3 |
||
cisco ios xe 16.7.1a |
||
cisco ios xe 16.7.1b |
||
cisco ios xe 16.8.1c |
||
cisco ios xe 16.8.1e |
||
cisco ios xe 16.9.1s |
||
cisco ios xe 16.9.1c |
||
cisco ios xe 16.9.1b |
||
cisco ios xe 16.9.1d |
||
cisco ios xe 16.6.4s |
||
cisco ios xe 16.6.4 |
||
cisco ios xe 16.10.1 |
||
cisco ios xe 16.7.4 |
||
cisco ios xe 16.9.1a |
||
cisco ios xe 16.9.2a |
||
cisco ios xe 16.9.2 |
||
cisco ios xe 16.6.4a |
||
cisco ios xe 16.12.1 |
||
cisco ios xe 16.6.5 |
||
cisco ios xe 16.11.1 |
||
cisco ios xe 17.1.1 |
||
cisco ios xe 16.11.1a |
||
cisco ios xe 16.12.1c |
||
cisco ios xe 16.12.1t |
||
cisco ios xe 16.11.2 |
||
cisco ios xe 16.12.1s |
||
cisco ios xe 16.12.1a |
||
cisco ios xe 16.12.1x |
||
cisco ios xe 16.11.1c |
||
cisco ios xe 16.11.1b |
||
cisco ios xe 16.11.1s |
||
cisco ios xe 16.12.1w |
||
cisco ios xe 16.10.1s |
||
cisco ios xe 16.10.1d |
||
cisco ios xe 16.9.2s |
||
cisco ios xe 16.6.6 |
||
cisco ios xe 16.9.3h |
||
cisco ios xe 16.6.5b |
||
cisco ios xe 16.6.5a |
||
cisco ios xe 16.9.3a |
||
cisco ios xe 16.10.1a |
||
cisco ios xe 16.10.1f |
||
cisco ios xe 16.10.1g |
||
cisco ios xe 16.10.2 |
||
cisco ios xe 16.9.3 |
||
cisco ios xe 16.12.1y |
||
cisco ios xe 16.10.1e |
||
cisco ios xe 16.10.1b |
||
cisco ios xe 16.8.3 |
||
cisco ios xe 16.9.3s |
||
cisco ios xe 16.10.1c |
||
cisco ios xe 16.9.4 |
||
cisco ios xe 16.12.2 |
||
cisco ios xe 16.6.7a |
||
cisco ios xe 16.9.4c |
||
cisco ios xe 16.12.2a |
||
cisco ios xe 16.6.7 |
||
cisco ios xe 16.10.3 |
||
cisco ios xe 16.12.4 |
||
cisco ios xe 16.9.5 |
||
cisco ios xe 16.9.5f |
||
cisco ios xe 16.6.8 |
||
cisco ios xe 16.12.3 |
||
cisco ios xe 17.2.1 |
||
cisco ios xe 17.1.1s |
||
cisco ios xe 16.12.2t |
||
cisco ios xe 17.1.1a |
||
cisco ios xe 16.12.2s |
||
cisco ios xe 16.12.3a |
||
cisco ios xe 17.1.1t |
||
cisco ios xe 17.2.1a |
||
cisco ios xe 17.2.1v |
||
cisco ios xe 16.12.1z |
||
cisco ios xe 16.12.3s |
||
cisco ios xe 17.2.1r |
||
cisco ios xe 17.1.2 |
||
cisco ios xe 16.12.4a |