CVE-2011-0962
Summary
| CVE | CVE-2011-0962 |
|---|---|
| State | PUBLIC |
| Assigner | [email protected] |
| Source Priority | CVE Program / NVD first with legacy fallback |
| Published | 2011-05-20 22:55:00 UTC |
| Updated | 2017-08-17 01:33:00 UTC |
| Description | Cross-site scripting (XSS) vulnerability in CSCOnm/servlet/com.cisco.nm.help.ServerHelpEngine in the Common Services Device Center in Cisco Unified Operations Manager (CUOM) before 8.6 allows remote attackers to inject arbitrary web script or HTML via the tag parameter, aka Bug ID CSCto12712. |
Risk And Classification
Problem Types: CWE-79
NVD Known Affected Configurations (CPE 2.3)
| Type | Vendor | Product | Version | Update | Edition | Language |
|---|---|---|---|---|---|---|
| Application | Cisco | Unified Operations Manager | 1.1 | All | All | All |
| Application | Cisco | Unified Operations Manager | 2.0 | All | All | All |
| Application | Cisco | Unified Operations Manager | 2.0.1 | All | All | All |
| Application | Cisco | Unified Operations Manager | 2.0.2 | All | All | All |
| Application | Cisco | Unified Operations Manager | 2.0.3 | All | All | All |
| Application | Cisco | Unified Operations Manager | 2.1 | All | All | All |
| Application | Cisco | Unified Operations Manager | 2.2 | All | All | All |
| Application | Cisco | Unified Operations Manager | 2.3 | All | All | All |
| Application | Cisco | Unified Operations Manager | 8.0 | All | All | All |
| Application | Cisco | Unified Operations Manager | 1.1 | All | All | All |
| Application | Cisco | Unified Operations Manager | 2.0 | All | All | All |
| Application | Cisco | Unified Operations Manager | 2.0.1 | All | All | All |
| Application | Cisco | Unified Operations Manager | 2.0.2 | All | All | All |
| Application | Cisco | Unified Operations Manager | 2.0.3 | All | All | All |
| Application | Cisco | Unified Operations Manager | 2.1 | All | All | All |
| Application | Cisco | Unified Operations Manager | 2.2 | All | All | All |
| Application | Cisco | Unified Operations Manager | 2.3 | All | All | All |
| Application | Cisco | Unified Operations Manager | 8.0 | All | All | All |
| Application | Cisco | Unified Operations Manager | All | All | All | All |
References
| Reference | Source | Link | Tags |
|---|---|---|---|
| Page Not Found | Sense of Security | MISC | www.senseofsecurity.com.au | Exploit |
| IBM X-Force Exchange | XF | exchange.xforce.ibmcloud.com | |
| Cisco Unified Operations Manager Multiple Vulnerabilities | EXPLOIT-DB | www.exploit-db.com | Exploit |
| Alert Details - Security Center - Cisco Systems | CONFIRM | tools.cisco.com | |
| 20110518 Cisco Unified Operations Manager Multiple Vulnerabilities - SOS-11-006 | FULLDISC | archives.neohapsis.com | Exploit |
| CVE Program record | CVE.ORG | www.cve.org | canonical |
| NVD vulnerability detail | NVD | nvd.nist.gov | canonical, analysis |
No vendor comments have been submitted for this CVE.
There are currently no legacy QID mappings associated with this CVE.