Vulnerability Details CVE-2013-5500
Multiple cross-site scripting (XSS) vulnerabilities in the oraadmin service page in Cisco MediaSense allow remote attackers to inject arbitrary web script or HTML via an unspecified parameter, aka Bug IDs CSCuj23320, CSCuj23324, CSCuj23333, and CSCuj23338.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.003
EPSS Ranking 52.7%
CVSS Severity
CVSS v2 Score 4.3
References
- http://tools.cisco.com/security/center/content/CiscoSecurityNotice/CVE-2013-5500
- http://www.securityfocus.com/bid/62575
- http://www.securitytracker.com/id/1029064
- http://tools.cisco.com/security/center/content/CiscoSecurityNotice/CVE-2013-5500
- http://www.securityfocus.com/bid/62575
- http://www.securitytracker.com/id/1029064
Products affected by CVE-2013-5500
-
cpe:2.3:a:cisco:mediasense:-