CVE-2012-3047

Cisco Scientific Atlanta D20-D30 - XSS

Title source: llm

Description

Cross-site scripting (XSS) vulnerability in the web-wizard setup page on Cisco Scientific Atlanta D20 and D30 cable modems allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.

References (1)

[Vendor Advisory] http://tools.cisco.com/security/center/viewAlert.x?alertId=26036

Scores

EPSS 0.0026

EPSS Percentile 49.4%

Details

CWE

CWE-79

Status published

Products (38)

cisco/scientific_atlanta_dpc\/epc_3208

cisco/scientific_atlanta_dpc\/epc2100

cisco/scientific_atlanta_dpc\/epc2202

cisco/scientific_atlanta_dpc\/epc2203

cisco/scientific_atlanta_dpc\/epc2325

cisco/scientific_atlanta_dpc\/epc2425

cisco/scientific_atlanta_dpc\/epc2434

cisco/scientific_atlanta_dpc\/epc2505

cisco/scientific_atlanta_dpc\/epc3010

cisco/scientific_atlanta_dpc\/epc3212

... and 28 more

Published Dec 10, 2013

Tracked Since Feb 18, 2026