CVE-2016-1311
MEDIUMCisco Jabber Guest Server 10.6(8) - XSS
Title source: llmDescription
Cross-site scripting (XSS) vulnerability in the management interface in Cisco Jabber Guest Server 10.6(8) allows remote attackers to inject arbitrary web script or HTML via the host tag parameter, aka Bug ID CSCuy08224.
Scores
CVSS v3
6.1
EPSS
0.0025
EPSS Percentile
48.1%
Attack Vector
NETWORK
CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N
Classification
CWE
CWE-79
Status
draft
Affected Products (1)
cisco/jabber_guest
Timeline
Published
Feb 06, 2016
Tracked Since
Feb 18, 2026