Cisco » Spa 501g 8-line Ip Phone : Security Vulnerabilities, CVEs, Published In 2014 (XSS)
Cross-site scripting (XSS) vulnerability in the web user interface on Cisco Small Business SPA300 and SPA500 phones allows remote attackers to inject arbitrary web script or HTML via a crafted URL, aka Bug ID CSCuo52582.
Max CVSS
4.3
EPSS Score
0.26%
Published
2014-07-09
Updated
2017-08-29
1 vulnerabilities found