NVD

Id
21199  
Name
CVE-2016-6425  
Description
Cross-site scripting (XSS) vulnerability in Cisco Unified Intelligence Center (CUIC) 8.5.4 through 9.1(1), as used in Unified Contact Center Express 10.0(1) through 11.0(1), allows remote attackers to inject arbitrary web script or HTML via a crafted URL, aka Bug IDs CSCuy75020 and CSCuy81652.  
Reject
 
CVSS Version
2  
CVSS Score
4.3  
Severity
Medium  
CVSS Base Score
4.3  
CVSS Impact Subscore
2.9  
CVSS Exploit Subscore
8.6  
CVSS Vector
(AV:N/AC:M/Au:N/C:N/I:P/A:N)  
Pub Date
2017-01-19  
Published
2016-10-06  
Modified Date
2016-11-28  
Seq
2016-6425  

Actions

Related NVD References

Id NVD Id NVD No. Reference Actions
115223 21199 CVE-2016-6425 20161005 Cisco Unified Intelligence Center (CUIC) Software Cross-Site Scripting Vulnerability  View
115224 21199 CVE-2016-6425 93422  View

Related JVN

Id Name Title Summary Cveinfo Name Cveinfo Id Nvdinfo Name Nvdinfo Id Cvssv2 Cvssv3 Jvnurl Published Date Last Updated Date Actions
4365 JVNDB-2016-005138 Cisco Unified Contact Center Express で使用される Unified Intelligence Center におけるクロスサイトスクリプティングの脆弱性 Cisco Unified Contact Center Express で使用される Unified Intelligence Center (CUIC) には、クロスサイトスクリプティングの脆弱性が存在します。 CVE-2016-6425 92932 CVE-2016-6425 21199 4.3 6.1 http://jvndb.jvn.jp/ja/contents/2016/JVNDB-2016-005138.html 2016-10-05 2016-10-12 View