Vulnslist

Cisco product, release, and evidence lookup

CVE-2015-0727

Cross-site scripting (XSS) vulnerability in the HTTP module in Cisco Security Manager (CSM) 4.7(0)SP1(1) allows remote attackers to inject arbitrary web script or HTML via a crafted URL, aka Bug ID CSCut27789.

Data: Cisco advisories · Cisco CSAF · NVD CVEs · NVD CPEs · CISA KEV · EPSS

SeverityMEDIUM
CVSS4.3
EPSS0.26% EPSS low
CWECWE-79
KEV
Published
Modified

Products with public affected evidence

Product Advisory Affected evidence
Cisco Security Manager Cisco-SA-20150513-CVE-2015-0727 structured affected CSAF product_status