CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2019-1882

A vulnerability in Cisco Industrial Network Director could allow an authenticated, remote attacker to conduct stored cross-site scripting (XSS) attacks. The vulnerability is due to improper validation of content submitted to the affected application. An attacker could exploit this vulnerability by sending requests containing malicious values to the affected system. A successful exploit could allow the attacker to conduct XSS attacks.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.002

EPSS Ranking 39.9%

CVSS Severity

CVSS v3 Score 5.4

CVSS v2 Score 3.5

References

http://www.securityfocus.com/bid/108629
https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20190605-ind-xss
http://www.securityfocus.com/bid/108629
https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20190605-ind-xss

Products affected by CVE-2019-1882

Cisco » Industrial Network Director » Version: 1.5(0.250)

cpe:2.3:a:cisco:industrial_network_director:1.5(0.250)

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2019-1882

Products

Pricing

Contact Us