CVE-2014-3374 Information

Description

Multiple cross-site scripting (XSS) vulnerabilities in the CCM admin interface in the Server in Cisco Unified Communications Manager allow remote attackers to inject arbitrary web script or HTML via unspecified parameters aka Bug ID CSCuq90582.

Reference

http://secunia.com/advisories/59696 http://tools.cisco.com/security/center/content/CiscoSecurityNotice/CVE-2014-3374 http://tools.cisco.com/security/center/viewAlert.x?alertId=36295 http://www.securityfocus.com/bid/70849 http://www.securitytracker.com/id/1031162 https://exchange.xforce.ibmcloud.com/vulnerabilities/98407