{"schema_version":"public-product-v1.1","generated_at":"2026-06-10T07:27:01Z","exposure_verdict":"not_assessed","verdict_reason":"Public evidence does not evaluate exact release, platform, enabled features, configuration, compensating controls, or live exposure.","cve":{"id":"CVE-2015-0690","description":"Cross-site scripting (XSS) vulnerability in the HTML help system on Cisco Wireless LAN Controller (WLC) devices before 8.0 allows remote attackers to inject arbitrary web script or HTML via a crafted URL, aka Bug ID CSCun95178.","severity":"MEDIUM","kev":false,"epss":{"score":0.00263,"percentile":0.49669,"score_date":"2026-05-19","updated_at":"2026-05-20T02:10:43Z"},"cvss_score":4.3,"cvss_source":"NVD","cwe":"CWE-79","published_at":"2015-04-07T02:00:21Z","modified_at":"2026-05-06T22:30:45Z"},"freshness":{"last_source_refreshed_at":"2026-05-26T00:00:03Z","latest_source_refresh_at":"2026-05-26T00:00:03Z","oldest_source_refresh_at":"2026-05-22T00:16:33Z","all_sources_fresh":false,"sources":[{"source":"cisco_advisories","label":"Cisco advisories","last_success_at":"2026-05-26T00:00:03Z","stale":true},{"source":"cisco_csaf","label":"Cisco CSAF","last_success_at":"2026-05-25T03:03:26Z","stale":true},{"source":"nvd_cves","label":"NVD CVEs","last_success_at":"2026-05-22T00:16:33Z","stale":true},{"source":"cisa_kev","label":"CISA KEV","last_success_at":"2026-05-22T00:16:34Z","stale":true},{"source":"first_epss","label":"EPSS","last_success_at":"2026-05-22T00:16:40Z","stale":true}]},"summary":{"advisory_count":1,"visible_product_count":1,"public_evidence_count":1,"kev":false,"cvss_score":4.3},"advisories":[{"id":"Cisco-SA-20150406-CVE-2015-0690","slug":"cisco-sa-20150406-cve-2015-0690","title":"Cisco Wireless LAN Controller HTML Help Cross-Site Scripting Vulnerability","source_url":"https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/Cisco-SA-20150406-CVE-2015-0690"}],"public_evidence":[{"product":{"name":"Cisco Wireless LAN Controller (WLC)","slug":"cisco-wireless-lan-controller-wlc","vendor":"Cisco"},"advisory":{"id":"Cisco-SA-20150406-CVE-2015-0690","slug":"cisco-sa-20150406-cve-2015-0690","title":"Cisco Wireless LAN Controller HTML Help Cross-Site Scripting Vulnerability","source_url":"https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/Cisco-SA-20150406-CVE-2015-0690"},"evidence_type":"structured_affected","evidence_label":{"scope":"CSAF product evidence","label":"product_status known affected"},"evidence_source":"Cisco CSAF","source":"Cisco CSAF","source_document_fetched_at":"2026-05-19T20:04:24Z","csaf_status":"known_affected","csaf_product_status":"known_affected","csaf_product_status_path":"vulnerabilities[].product_status.known_affected","raw_product_name":"7.4.121.0; 7.6.100.0","exposure_verdict":"not_assessed","verdict_reason":"Public evidence does not evaluate exact release, platform, enabled features, configuration, compensating controls, or live exposure.","exposure_verdict_reason":"Public evidence does not evaluate exact release, platform, enabled features, configuration, compensating controls, or live exposure.","kev":false,"epss":{"score":0.00263,"score_date":"2026-05-19","updated_at":"2026-05-20T02:10:43Z"},"cvss_score":4.3,"cvss_source":"NVD","published_at":"2015-04-06T17:30:53Z","updated_at":"2015-04-06T17:30:53Z","advisory_updated_at":"2015-04-06T17:30:53Z","source_url":"https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/Cisco-SA-20150406-CVE-2015-0690","row_display_order":1}]}