CVE-2013-1227: XSS
First published: Mon Apr 29 2013(Updated: )
Cross-site scripting (XSS) vulnerability in the web framework in Cisco Unified Communications Domain Manager allows remote attackers to inject arbitrary web script or HTML via unspecified vectors, aka Bug ID CSCug37902.
Credit: ykramarz@cisco.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Cisco Unified Communications Domain Manager |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Frequently Asked Questions
What is the severity of CVE-2013-1227?
CVE-2013-1227 is classified as a medium severity vulnerability due to its potential for cross-site scripting attacks.
How do I fix CVE-2013-1227?
To remediate CVE-2013-1227, it is recommended to apply the latest security updates provided by Cisco for Unified Communications Domain Manager.
What impact does CVE-2013-1227 have on users?
CVE-2013-1227 can allow remote attackers to execute arbitrary scripts in the context of affected users, leading to potential data theft or manipulation.
What versions of Cisco Unified Communications Domain Manager are affected by CVE-2013-1227?
CVE-2013-1227 affects all versions of Cisco Unified Communications Domain Manager prior to the patches recommended by Cisco.
Are there any known exploits for CVE-2013-1227?
As of now, specific exploit details for CVE-2013-1227 have not been publicly disclosed, but the nature of the vulnerability poses significant risk.
- collector/nvd-index
- agent/type
- agent/softwarecombine
- collector/mitre-cve
- source/MITRE
- agent/last-modified-date
- agent/author
- agent/references
- agent/severity
- agent/weakness
- agent/description
- agent/first-publish-date
- agent/event
- agent/tags
- agent/source
- vendor/cisco
- canonical/cisco unified communications domain manager