N/A

A vulnerability in the web interface of Cisco Industrial Network Director could allow an unauthenticated, remote attacker to conduct a reflected cross-site scripting (XSS) attack against an affected system. More Information: CSCvd25405. Known Affected Releases: 1.1(0.176).

N/A

N/A

Cisco Industrial Network Director 跨站脚本漏洞

Cisco Industrial Network Director是美国思科（Cisco）公司的一套工业自动化管理系统。该系统通过对工业以太网基础设施的可视化操作来实现自动化管理。 Cisco Industrial Network Director中的Web界面存在跨站脚本漏洞，该漏洞源于程序没有充分的过滤用户提交的输入。远程攻击者可利用该漏洞在受影响站点的上下文中执行任意的HTML或脚本代码。

N/A

N/A