Cisco Bug: CSCtf09798 - XSS in Administrative Web Portal
Feb 22, 2017
- Cisco TelePresence Multipoint Switch
Known Affected Releases
Symptoms: Cisco TelePresence Multi-Point Switch devices contain a reflected cross-site-scripting vulnerability. This issue could allow a remote attacker that can convince an authenticated administrator to follow a malicious link to execute arbitrary HTML or script code on the users browser within the security context of the affected devices web administration portal. Conditions: Devices running an affected version of the Cisco TelePresence Multi-Point Switch software.
Bug details contain sensitive information and therefore require a Cisco.com account to be viewed.
Bug Details Include
- Full Description (including symptoms, conditions and workarounds)
- Known Fixed Releases
- Related Community Discussions
- Number of Related Support Cases