CVE-2016-1396

Cross-site scripting (XSS) vulnerability in the web-based management interface on Cisco RV110W devices with firmware before 1.2.1.7, RV130W devices with firmware before 1.0.3.16, and RV215W devices with firmware before 1.3.0.8 allows remote attackers to inject arbitrary web script or HTML via a crafted parameter, aka Bug ID CSCux82583.

Severity	MEDIUM
CVSS	6.1
CWE	CWE-79
KEV
Published	9 years ago
Modified	1 week ago

Related Products

Product	Advisory
Cisco Small Business RV Series Router Firmware	cisco-sa-20160615-rv1
Cisco RV Series Routers	cisco-sa-20160615-rv1
Cisco Nexus Dashboard	cisco-sa-20160615-rv1
Cisco RV215W Wireless-N VPN Router Firmware	cisco-sa-20160615-rv1
Cisco RV130W Wireless-N Multifunction VPN Router Firmware	cisco-sa-20160615-rv1
Cisco RV110W Wireless-N VPN Firewall Firmware	cisco-sa-20160615-rv1