CVE-2014-3324CVE-2014-3324

Affected configuration(s):

cpe:/a:cisco:telepresence_server_software:3.0%282.24%29
cpe:/a:cisco:telepresence_server_software:3.1%281.98%29
cpe:/a:cisco:telepresence_server_software:4.0%281.57%29
cpe:/a:cisco:telepresence_server_software:4.0%282.8%29

Date published: 2014-07-26T07:11:57.177-04:00

Date last modified: 2017-08-28T21:34:42.047-04:00

CVSS Score: 4.3

Principal attack vector: NETWORK

Complexity:  MEDIUM

Reference URL: http://tools.cisco.com/security/center/content/CiscoSecurityNotice/CVE-2014-3324

Summary: Multiple cross-site scripting (XSS) vulnerabilities in the login page in the administrative web interface in Cisco TelePresence Server Software 4.0(2.8) allow remote attackers to inject arbitrary web script or HTML via a crafted parameter, aka Bug ID CSCup90060.

CategoriesUncategorised

Leave a Reply

Your email address will not be published. Required fields are marked *

This site uses Akismet to reduce spam. Learn how your comment data is processed.