A vulnerability in the User Provisioning tab in the Cisco Prime Collaboration Provisioning Tool could allow an unauthenticated, remote attacker to conduct a cross-site scripting (XSS) attack. The vulnerability is due to improper input validation. An attacker could exploit this vulnerability by placing a malicious string in the Prime Collaboration Provisioning database. A successful exploit could allow the attacker to access Cisco Prime Collaboration Provisioning by injecting crafted data into the database. Cisco Bug IDs: CSCvd86609.
Metrics
Affected Vendors & Products
References
History
Mon, 02 Dec 2024 21:15:00 +0000
Type | Values Removed | Values Added |
---|---|---|
Metrics |
ssvc
|
MITRE
Status: PUBLISHED
Assigner: cisco
Published: 2018-02-22T00:00:00
Updated: 2024-12-02T21:00:34.515Z
Reserved: 2017-11-27T00:00:00
Link: CVE-2018-0205
Vulnrichment
Updated: 2024-08-05T03:14:16.953Z
NVD
Status : Modified
Published: 2018-02-22T00:29:00.877
Modified: 2024-11-21T03:37:43.697
Link: CVE-2018-0205
Redhat
No data.