CVE-2012-3047
4.3
Vector
AV:N/AC:M/Au:N/C:N/I:P/A:N
Exploitability: 8.6 / Impact: 2.9
Source: NVD
Description
Cross-site scripting (XSS) vulnerability in the web-wizard setup page on Cisco Scientific Atlanta D20 and D30 cable modems allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.
Affected (37)
Products: Cisco: Scientific Atlanta Dpc/epc2100, Scientific Atlanta Dpc/epc2202, Scientific Atlanta Dpc/epc2203, Scientific Atlanta Dpc/epc2325, Scientific Atlanta Dpc/epc2425, Scientific Atlanta Dpc/epc2434, Scientific Atlanta Dpc/epc2505, Scientific Atlanta Dpc/epc3010, Scientific Atlanta Dpc/epc3212, Scientific Atlanta Dpc/epc 3208, Scientific Atlanta Dpc2420, Scientific Atlanta Dpc3000/epc3000, Scientific Atlanta Dpc3008/epc3008, Scientific Atlanta Dpc3825, Scientific Atlanta Dpc3925, Scientific Atlanta Dpq/epq2160, Scientific Atlanta Dpq2202, Scientific Atlanta Dpq2425, Scientific Atlanta Dpq3212, Scientific Atlanta Dpq3925, Scientific Atlanta Dpr362, Scientific Atlanta Dpw700, Scientific Atlanta Dpw730, Scientific Atlanta Dpw939, Scientific Atlanta Dpw941, Scientific Atlanta Dpx/epx2100, Scientific Atlanta Dpx/epx2203, Scientific Atlanta Dpx/epx2203c, Scientific Atlanta Dpx100/120, Scientific Atlanta Dpx110, Scientific Atlanta Dpx130, Scientific Atlanta Dpx213, Scientific Atlanta Dpx2213, Scientific Atlanta Epc2420, Scientific Atlanta Epc3825, Scientific Atlanta Epc3925, Scientific Atlanta Wag310g
Configuration A
| Vulnerable Software | Affected Versions |
|---|---|
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions |
References (2)
Source: psirt@cisco.com
Vendor Advisory
Source: af854a3a-2127-422b-91ae-364da2661108
Vendor Advisory
Timeline
No history available yet.