CVE-2013-5482

Published: Sep 13, 2013Modified: Apr 29, 2026

4.3

Vector

AV:N/AC:M/Au:N/C:N/I:P/A:N

Exploitability: 8.6 / Impact: 2.9

Source: NVD

Description

Cisco Prime LAN Management Solution (LMS) does not properly restrict use of IFRAME elements, which makes it easier for remote attackers to conduct clickjacking attacks and unspecified other attacks via a crafted web site, related to a "cross-frame scripting (XFS)" issue, aka Bug ID CSCug77823.

Affected (1)

Products: Cisco: Prime Lan Management Solution

1 product

Prime Lan Management Solution

Configuration A

1 vulnerable

Vulnerable Software	Affected Versions
Cisco Prime Lan Management Solution	All versions

Related CWEs

References (2)

http://tools.cisco.com/security/center/content/CiscoSecurityNotice/CVE-2013-5482

Source: psirt@cisco.com

Vendor Advisory

http://tools.cisco.com/security/center/content/CiscoSecurityNotice/CVE-2013-5482

Source: af854a3a-2127-422b-91ae-364da2661108

Vendor Advisory

Timeline

No history available yet.