cbcvebase.
CVE-2015-0698
published 2015-04-15

CVE-2015-0698: Multiple cross-site scripting (XSS) vulnerabilities in filter search forms in admin web pages on Cisco Web Security Appliance (WSA) devices with software…

medium4.3CVSS 3.1
AVNACMAuNCNIPAN
Multiple cross-site scripting (XSS) vulnerabilities in filter search forms in admin web pages on Cisco Web Security Appliance (WSA) devices with software 8.5.0-497 allow remote attackers to inject arbitrary web script or HTML via a crafted URL, aka Bug ID CSCut39213.

Affected

1 ranges
VendorProductVersion rangeFixed in
ciscoweb_security_appliance<= 8.5.0-497