CVE-2015-4270

Multiple cross-site scripting (XSS) vulnerabilities in Cisco FireSIGHT System Software 5.3.1.5 and 6.0.0 allow remote attackers to inject arbitrary web script or HTML via a crafted URL, aka Bug IDs CSCuv22557, CSCuv22583, CSCuv22632, CSCuv22641, CSCuv22650, CSCuv22662, CSCuv22697, and CSCuv22702.

Severity	MEDIUM
CVSS	4.3
EPSS	0.26% EPSS low
CWE	CWE-79
KEV
Published	10 years ago
Modified	2 weeks ago

Public Affected Products

Product	Advisory	Evidence
Cisco Firepower System Software	Cisco-SA-20150713-CVE-2015-4270	Cisco CSAF · structured affected