CVE-2019-1956MEDIUMCVSS 4.8fixed in 1.4.\(1\)sr42019-08-08
CVE-2019-1956 [MEDIUM] CWE-79 CVE-2019-1956: A vulnerability in the web-based interface of the Cisco SPA112 2-Port Phone Adapter could allow an a
A vulnerability in the web-based interface of the Cisco SPA112 2-Port Phone Adapter could allow an authenticated, remote attacker to conduct a cross-site scripting (XSS) attack against another user of the device. The vulnerability is due to insufficient validation of user-supplied input by the web-based interface of the affected device. An attacker cou
nvd