CVE-2014-3372 Information

Description

Multiple cross-site scripting (XSS) vulnerabilities in the CCM reports interface in the Server in Cisco Unified Communications Manager allow remote attackers to inject arbitrary web script or HTML via unspecified parameters aka Bug ID CSCuq90589.

Reference

http://secunia.com/advisories/61003 http://tools.cisco.com/security/center/content/CiscoSecurityNotice/CVE-2014-3372 http://tools.cisco.com/security/center/viewAlert.x?alertId=36292 http://www.securityfocus.com/bid/70846 http://www.securitytracker.com/id/1031159 https://exchange.xforce.ibmcloud.com/vulnerabilities/98404