CVE-2015-0599

The web interface in Cisco Integrated Management Controller in Cisco Unified Computing System (UCS) on C-Series Rack Servers does not properly restrict use of IFRAME elements, which makes it easier for remote attackers to conduct clickjacking attacks and unspecified other attacks via a crafted web site, related to a "cross-frame scripting (XFS)" issue, aka Bug ID CSCuf50138.
Advertisement

NeevaHost hosting service

Configurations

Configuration 1 (hide)

cpe:2.3:h:cisco:unified_computing_system:-:*:*:*:*:*:*:*

Information

Published : 2015-02-03 14:59

Updated : 2017-09-07 18:29


NVD link : CVE-2015-0599

Mitre link : CVE-2015-0599


JSON object : View

CWE
CWE-254

7PK - Security Features

Advertisement

dedicated server usa

Products Affected

cisco

  • unified_computing_system