Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2014-3365

Overview

Vulnerability Score 4.3 4.3
CVE Id CVE-2014-3365
Last Modified 20 Feb 2015 09:59:52
Published 11 Feb 2015 08:59:19
Confidentiality Impact NONE NONE
Integrity Impact PARTIAL PARTIAL
Availability Impact NONE NONE
Access Vector NETWORK
Access Complexity MEDIUM
Authentication NONE

CVE-2014-3365

Summary

Multiple cross-site scripting (XSS) vulnerabilities in Cisco Prime Security Manager (PRSM) 9.2(.1-2) and earlier allow remote attackers to inject arbitrary web script or HTML via crafted input to the (1) Dashboard or (2) Configure Realm page, aka Bug ID CSCuo94808.

Vulnerable Systems

Application

  • Cisco Prime Security Manager 9.2.1-2


References

CONFIRM - http://tools.cisco.com/security/center/viewAlert.x?alertId=37418

CISCO - 20150209 Cisco Prime Security Manager Cross-Site Scripting Vulnerability

XF - cisco-prime-cve20143365-xss(100756)

SECTRACK - 1031716


Last Updated: 27 May 2016 11:07:53