CVE-2016-1471

Cross-site scripting (XSS) vulnerability in the web-based management interface on Cisco Small Business 220 devices with firmware before 1.0.1.1 allows remote attackers to inject arbitrary web script or HTML via a crafted URL, aka Bug ID CSCuz76232.

Severity	MEDIUM
CVSS	6.1
EPSS	0.27%
CWE	CWE-79
KEV
Published	9 years ago
Modified	2 weeks ago

CSAF Product Statuses

Product	Status	Source	Advisory	Rows
Cisco Small Business 220 Series Smart Plus Switches	known_affected	cisco_csaf	cisco-sa-20160831-sps1	1

Related Products

Product	Advisory
Cisco Small Business 220 Series Smart Plus Switches	cisco-sa-20160831-sps1
Cisco Business 220 Series Switches	cisco-sa-20160831-sps1
Cisco Small Business 220 Series Smart Switches	cisco-sa-20160831-sps1