CVE-2015-0696

Public PoC / Exploit

No public PoC or exploit code indexed for this CVE.

Links to public security research (Exploit-DB, Nuclei, Trickest, GitHub) for defensive use only.

Description

Cross-site scripting (XSS) vulnerability in the login page in Cisco TC Software before 7.1.0 on Cisco TelePresence Collaboration Desk and Room Endpoints devices allows remote attackers to inject arbitrary web script or HTML via unspecified vectors, aka Bug ID CSCuq94977.

Weaknesses (CWE)

CWE-79

Affected Products (14)

cisco · telepresence_tc_softwarevulnerable

References (4)

http://tools.cisco.com/security/center/viewAlert.x?alertId=38349

Vendor Advisory

http://www.securitytracker.com/id/1032137

Third Party AdvisoryVDB Entry

http://tools.cisco.com/security/center/viewAlert.x?alertId=38349

Vendor Advisory

http://www.securitytracker.com/id/1032137

Third Party AdvisoryVDB Entry