CVE-2014-0680
N/A
N/A
Summary
Cross-site scripting (XSS) vulnerability in the HTTP control interface in the NAC Web Agent component in Cisco Identity Services Engine (ISE) allows remote attackers to inject arbitrary web script or HTML via a crafted URL, aka Bug ID CSCui15038.
Affected Software
| Vendor | Product | Version Range | Status |
|---|---|---|---|
| n/a | n/a | n/a | affected |
Weaknesses
- n/a
ADP Enrichment
CVE Program Container
Additional References
- http://tools.cisco.com/security/center/viewAlert.x?alertId=32617
- http://tools.cisco.com/security/center/content/CiscoSecurityNotice/CVE-2014-0680
- http://www.securityfocus.com/bid/65227
- http://osvdb.org/102588
- http://secunia.com/advisories/56672
- http://www.securitytracker.com/id/1029701
References
- http://tools.cisco.com/security/center/viewAlert.x?alertId=32617
- http://tools.cisco.com/security/center/content/CiscoSecurityNotice/CVE-2014-0680
- http://www.securityfocus.com/bid/65227
- http://osvdb.org/102588
- http://secunia.com/advisories/56672
- http://www.securitytracker.com/id/1029701
Feedback
Was this page helpful?
Glad to hear it! Please tell us how we can improve.
Sorry to hear that. Please tell us how we can improve.