CVE-2016-1294: Cross-site scripting (XSS) vulnerability in the Management Center in Cisco FireSIGHT System Software 6.0.1 allows remote attackers to inject arbitrary web…

medium6.1CVSS 3.0

AVNACLPRNUIRSCCLILAN

Cross-site scripting (XSS) vulnerability in the Management Center in Cisco FireSIGHT System Software 6.0.1 allows remote attackers to inject arbitrary web script or HTML via a crafted cookie, aka Bug ID CSCuw89094.

Affected

2 ranges

Vendor	Product	Version range	Fixed in
cisco	firesight_management_center_dom-based	—	—
cisco	firesight_system_software	—	—