Vulnslist

Cisco product, release, and evidence lookup

CVE-2013-3440

Multiple cross-site scripting (XSS) vulnerabilities in the administrative web interface in Cisco Unified Operations Manager allow remote attackers to inject arbitrary web script or HTML, and obtain improperly secured cookies, via unspecified vectors, aka Bug ID CSCud80186.

SeverityMEDIUM
CVSS4.3
EPSS0.36% EPSS medium
CWECWE-79
KEV
Published
Modified

Public Affected Products

Product Advisory Evidence
Cisco Unified Operations Manager Cisco-SA-20130723-CVE-2013-3440 Cisco CSAF ยท structured affected