CVE-2013-3440

CVE Database · CVE-2013-3440

CVE-2013-3440

· N/AModified

CVSS v3.1

N/A

EPSS

1.16%

Published

Jul 23, 2013

Modified

Apr 28, 2026

Public PoC / Exploit

All weaponized →

No public PoC or exploit code indexed for this CVE.

Links to public security research (Exploit-DB, Nuclei, Trickest, GitHub) for defensive use only.

Description

Multiple cross-site scripting (XSS) vulnerabilities in the administrative web interface in Cisco Unified Operations Manager allow remote attackers to inject arbitrary web script or HTML, and obtain improperly secured cookies, via unspecified vectors, aka Bug ID CSCud80186.

Weaknesses (CWE)

CWE-79

Affected Products (1)

cisco · unified_operations_managervulnerable

References (10)

http://osvdb.org/95584

http://tools.cisco.com/security/center/content/CiscoSecurityNotice/CVE-2013-3440

Vendor Advisory

http://tools.cisco.com/security/center/viewAlert.x?alertId=30175

Vendor Advisory

http://www.securityfocus.com/bid/61414

http://www.securitytracker.com/id/1028819