Multiple cross-site scripting (XSS) vulnerabilities in dashboard-related HTML documents in Cisco Prime Security Manager (aka PRSM) 9.2(.1-2) and earlier allow remote attackers to inject arbitrary web script or HTML via unspecified parameters, aka Bug ID CSCun50687.
2014-03-27T21:55:09.127
2025-04-12T10:46:40.837
Deferred
CVSSv2: 4.3 (MEDIUM)
AV:N/AC:M/Au:N/C:N/I:P/A:N
8.6
2.9
| Type | Vendor | Product | Version/Range | Vulnerable? |
|---|---|---|---|---|
| Application | cisco | prime_security_manager | ≤ 9.2.1-2 | Yes |
| Application | cisco | prime_security_manager | 9.0 | Yes |
| Application | cisco | prime_security_manager | 9.1 | Yes |
| Application | cisco | prime_security_manager | 9.1.2-29 | Yes |
| Application | cisco | prime_security_manager | 9.1.2-42 | Yes |
| Application | cisco | prime_security_manager | 9.1.3-8 | Yes |
| Application | cisco | prime_security_manager | 9.1.3-10 | Yes |
| Application | cisco | prime_security_manager | 9.1.3-13 | Yes |
| Application | cisco | prime_security_manager | 9.2 | Yes |
| Application | cisco | prime_security_manager | 9.2.1-1 | Yes |