Vulnerability Details CVE-2016-6418
Cross-site scripting (XSS) vulnerability in Cisco Videoscape Distribution Suite Service Manager (VDS-SM) 3.0 through 3.4.0 allows remote attackers to inject arbitrary web script or HTML via a crafted URL, aka Bug ID CSCva14552.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.003
EPSS Ranking 52.2%
CVSS Severity
CVSS v3 Score 6.1
CVSS v2 Score 4.3
References
Products affected by CVE-2016-6418
-
cpe:2.3:a:cisco:videoscape_distribution_suite_service_manager:3.0.0
-
cpe:2.3:a:cisco:videoscape_distribution_suite_service_manager:3.1.0
-
cpe:2.3:a:cisco:videoscape_distribution_suite_service_manager:3.2.0
-
cpe:2.3:a:cisco:videoscape_distribution_suite_service_manager:3.3.0
-
cpe:2.3:a:cisco:videoscape_distribution_suite_service_manager:3.4.0