Vulnerabilities > Cisco > Broadband Access Center Telco Wireless Software
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2014-05-07 | CVE-2014-2191 | Cross-Site Scripting vulnerability in Cisco Broadband Access Center Telco Wireless Software Cross-site scripting (XSS) vulnerability in the web framework in Cisco Broadcast Access Center for Telco and Wireless (aka BAC-TW) allows remote attackers to inject arbitrary web script or HTML via an unspecified parameter, aka Bug ID CSCun91113. | 4.3 |
| 2014-05-07 | CVE-2014-2190 | Cross-Site Request Forgery (CSRF) vulnerability in Cisco Broadband Access Center Telco Wireless Software Cross-site request forgery (CSRF) vulnerability in the web framework in Cisco Broadcast Access Center for Telco and Wireless (aka BAC-TW) allows remote attackers to hijack the authentication of arbitrary users for requests that make BAC-TW changes, aka Bug IDs CSCuo23804 and CSCuo26389. | 6.8 |