Cisco » Broadband Access Center Telco Wireless Software : Security Vulnerabilities, CVEs,
Cross-site scripting (XSS) vulnerability in the web framework in Cisco Broadcast Access Center for Telco and Wireless (aka BAC-TW) allows remote attackers to inject arbitrary web script or HTML via an unspecified parameter, aka Bug ID CSCun91113.
Max CVSS
4.3
EPSS Score
0.14%
Published
2014-05-07
Updated
2015-08-13
Cross-site request forgery (CSRF) vulnerability in the web framework in Cisco Broadcast Access Center for Telco and Wireless (aka BAC-TW) allows remote attackers to hijack the authentication of arbitrary users for requests that make BAC-TW changes, aka Bug IDs CSCuo23804 and CSCuo26389.
Max CVSS
6.8
EPSS Score
0.09%
Published
2014-05-07
Updated
2015-08-13
2 vulnerabilities found