CVE-2018-15449

A vulnerability in the web-based management interface of Cisco Video Surveillance Media Server could allow an unauthenticated, remote attacker to cause a denial of service (DoS) of the web-based management interface of an affected system. The vulnerability is due to insufficient validation of user-supplied input by the web-based management interface of the affected service. An attacker could exploit this vulnerability by persuading a user of the interface to click a malicious link. A successful exploit could allow the attacker to cause the web-based management interface to become unreachable, resulting in a DoS condition.

Severity	MEDIUM
CVSS	4.3
CWE	CWE-20
KEV
Published	7 years ago
Modified	1 year ago

Related Products

Product	Advisory
Cisco RV Series Routers	cisco-sa-20181107-vsms-dos
Cisco Nexus Dashboard	cisco-sa-20181107-vsms-dos
Cisco Meraki MS Series Switches	cisco-sa-20181107-vsms-dos
8110 Series Broadband Network Termination Units	cisco-sa-20181107-vsms-dos
Cisco Video Surveillance Media Server Software	cisco-sa-20181107-vsms-dos
Cisco Video Surveillance Manager	cisco-sa-20181107-vsms-dos