NVD

Id
7960  
Name
CVE-2011-0959  
Description
Multiple cross-site scripting (XSS) vulnerabilities in Cisco Unified Operations Manager (CUOM) before 8.6 allow remote attackers to inject arbitrary web script or HTML via (1) the extn parameter to iptm/advancedfind.do, (2) the deviceInstanceName parameter to iptm/ddv.do, the (3) cmd or (4) group parameter to iptm/eventmon, the (5) clusterName or (6) deviceName parameter to iptm/faultmon/ui/dojo/Main/eventmon_wrapper.jsp, or the (7) ccmName or (8) clusterName parameter to iptm/logicalTopo.do, aka Bug ID CSCtn61716.  
Reject
 
CVSS Version
2  
CVSS Score
4.3  
Severity
Medium  
CVSS Base Score
4.3  
CVSS Impact Subscore
2.9  
CVSS Exploit Subscore
8.6  
CVSS Vector
(AV:N/AC:M/Au:N/C:N/I:P/A:N)  
Pub Date
2017-01-07  
Published
2011-05-20  
Modified Date
2011-05-24  
Seq
2011-0959  

Actions

Related NVD References

Id NVD Id NVD No. Reference Actions
45130 7960 CVE-2011-0959 20110518 Cisco Unified Operations Manager Multiple Vulnerabilities - SOS-11-006  View
45131 7960 CVE-2011-0959 http://tools.cisco.com/security/center/viewAlert.x?alertId=23085  View
45132 7960 CVE-2011-0959 17304  View
45133 7960 CVE-2011-0959 http://www.senseofsecurity.com.au/advisories/SOS-11-006.pdf  View
45134 7960 CVE-2011-0959 cisco-uom-multiple-xss(67521)  View

Related JVN

Id Name Title Summary Cveinfo Name Cveinfo Id Nvdinfo Name Nvdinfo Id Cvssv2 Cvssv3 Jvnurl Published Date Last Updated Date Actions
32887 JVNDB-2011-003127 Cisco Unified Operations Manager におけるクロスサイトスクリプティングの脆弱性 Cisco Unified Operations Manager (CUOM) には、クロスサイトスクリプティングの脆弱性が存在します。 CVE-2011-0959 48866 CVE-2011-0959 7960 4.3 http://jvndb.jvn.jp/ja/contents/2011/JVNDB-2011-003127.html 2011-05-18 2011-12-01 View