Vulnerabilities > Cisco > Finesse
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2015-05-02 | CVE-2015-0714 | Cross-site Scripting vulnerability in Cisco Finesse Multiple cross-site scripting (XSS) vulnerabilities in Cisco Finesse Server 10.0(1), 10.5(1), 10.6(1), and 11.0(1) allow remote attackers to inject arbitrary web script or HTML via unspecified parameters, aka Bug ID CSCut53595. | 4.3 |
2013-08-12 | CVE-2013-3457 | Path Traversal vulnerability in Cisco Finesse Absolute path traversal vulnerability in the web interface in Cisco Finesse allows remote attackers to read directory contents via a direct request to a directory URL, aka Bug ID CSCug16772. | 5.0 |
2013-08-12 | CVE-2013-3455 | Credentials Management vulnerability in Cisco Finesse Cisco Finesse allows remote attackers to obtain sensitive information by sniffing the network for HTTP query data, aka Bug ID CSCug16732. | 5.0 |