Vulnerability Description
Cross-site scripting (XSS) vulnerability in the management interface in Cisco Prime Central for Hosted Collaboration Solution (PC4HCS) 10.6(2) allows remote attackers to inject arbitrary web script or HTML via an unspecified value, aka Bug ID CSCuv45818.
CVSS Score
MEDIUM
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Cisco | Prime Central For Hosted Collaboration Solution Assurance | 10.6\(2\) |
Related Weaknesses (CWE)
References
- http://tools.cisco.com/security/center/viewAlert.x?alertId=40214Vendor Advisory
- http://www.securitytracker.com/id/1033172
- http://tools.cisco.com/security/center/viewAlert.x?alertId=40214Vendor Advisory
- http://www.securitytracker.com/id/1033172
FAQ
What is CVE-2015-4292?
CVE-2015-4292 is a vulnerability with a CVSS score of 4.3 (MEDIUM). Cross-site scripting (XSS) vulnerability in the management interface in Cisco Prime Central for Hosted Collaboration Solution (PC4HCS) 10.6(2) allows remote attackers to inject arbitrary web script or...
How severe is CVE-2015-4292?
CVE-2015-4292 has been rated MEDIUM with a CVSS base score of 4.3/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2015-4292?
Check the references section above for vendor advisories and patch information. Affected products include: Cisco Prime Central For Hosted Collaboration Solution Assurance.