Vulnerability Details CVE-2016-1431
Cross-site scripting (XSS) vulnerability in Cisco Firepower Management Center 4.10.3, 5.2.0, 5.3.0, 5.3.1, and 5.4.0 allows remote attackers to inject arbitrary web script or HTML via a crafted URL, aka Bug ID CSCur25516.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.003
EPSS Ranking 48.3%
CVSS Severity
CVSS v3 Score 6.1
CVSS v2 Score 4.3
References
Products affected by CVE-2016-1431
-
cpe:2.3:a:cisco:secure_firewall_management_center:4.10.3
-
cpe:2.3:a:cisco:secure_firewall_management_center:5.2.0
-
cpe:2.3:a:cisco:secure_firewall_management_center:5.3.0
-
cpe:2.3:a:cisco:secure_firewall_management_center:5.3.1
-
cpe:2.3:a:cisco:secure_firewall_management_center:5.4.0