Cisco Bug: CSCtb38467 - DOM based XSS vulnerabilty in Cisco Router and Security Device Manager
Feb 07, 2017
Known Affected Releases
Symptom: DOM based XSS vulnerability in Cisco Router and Security Device Manager (SDM) Conditions: Affects all versions of SDM installed on a PC or PC and Router. Authentication is not required for this XSS to be exploited if the router is not configured for authentication. If authentication is configured for user sessions, authentication will be required before the XSS can be exploited.
Bug details contain sensitive information and therefore require a Cisco.com account to be viewed.
Bug Details Include
- Full Description (including symptoms, conditions and workarounds)
- Known Fixed Releases
- Related Community Discussions
- Number of Related Support Cases