CVEDB API

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2016-6436

Cross-site scripting (XSS) vulnerability in HostScan Engine 3.0.08062 through 3.1.14018 in the Cisco Host Scan package, as used in ASA Web VPN, allows remote attackers to inject arbitrary web script or HTML via a crafted URL, aka Bug ID CSCuz14682.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.003

EPSS Ranking 48.5%

CVSS Severity

CVSS v3 Score 6.1

CVSS v2 Score 4.3

References

Products affected by CVE-2016-6436

Cisco » Hostscan Engine » Version: 3.0.08062

cpe:2.3:a:cisco:hostscan_engine:3.0.08062
Cisco » Hostscan Engine » Version: 3.0.08066

cpe:2.3:a:cisco:hostscan_engine:3.0.08066
Cisco » Hostscan Engine » Version: 3.1.01065

cpe:2.3:a:cisco:hostscan_engine:3.1.01065
Cisco » Hostscan Engine » Version: 3.1.02016

cpe:2.3:a:cisco:hostscan_engine:3.1.02016
Cisco » Hostscan Engine » Version: 3.1.02026

cpe:2.3:a:cisco:hostscan_engine:3.1.02026
Cisco » Hostscan Engine » Version: 3.1.02040

cpe:2.3:a:cisco:hostscan_engine:3.1.02040
Cisco » Hostscan Engine » Version: 3.1.02043

cpe:2.3:a:cisco:hostscan_engine:3.1.02043
Cisco » Hostscan Engine » Version: 3.1.03103

cpe:2.3:a:cisco:hostscan_engine:3.1.03103
Cisco » Hostscan Engine » Version: 3.1.03104

cpe:2.3:a:cisco:hostscan_engine:3.1.03104
Cisco » Hostscan Engine » Version: 3.1.04060

cpe:2.3:a:cisco:hostscan_engine:3.1.04060
Cisco » Hostscan Engine » Version: 3.1.04063

cpe:2.3:a:cisco:hostscan_engine:3.1.04063
Cisco » Hostscan Engine » Version: 3.1.04075

cpe:2.3:a:cisco:hostscan_engine:3.1.04075
Cisco » Hostscan Engine » Version: 3.1.04082

cpe:2.3:a:cisco:hostscan_engine:3.1.04082
Cisco » Hostscan Engine » Version: 3.1.05152

cpe:2.3:a:cisco:hostscan_engine:3.1.05152
Cisco » Hostscan Engine » Version: 3.1.05160

cpe:2.3:a:cisco:hostscan_engine:3.1.05160
Cisco » Hostscan Engine » Version: 3.1.05163

cpe:2.3:a:cisco:hostscan_engine:3.1.05163
Cisco » Hostscan Engine » Version: 3.1.05170

cpe:2.3:a:cisco:hostscan_engine:3.1.05170
Cisco » Hostscan Engine » Version: 3.1.05178

cpe:2.3:a:cisco:hostscan_engine:3.1.05178
Cisco » Hostscan Engine » Version: 3.1.05182

cpe:2.3:a:cisco:hostscan_engine:3.1.05182
Cisco » Hostscan Engine » Version: 3.1.05183

cpe:2.3:a:cisco:hostscan_engine:3.1.05183
Cisco » Hostscan Engine » Version: 3.1.06073

cpe:2.3:a:cisco:hostscan_engine:3.1.06073
Cisco » Hostscan Engine » Version: 3.1.14018

cpe:2.3:a:cisco:hostscan_engine:3.1.14018

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2016-6436

Products

Pricing

Contact Us