March 12, 2025
Proactive Defense: The Importance of Incident Response Planning in Cybersecurity
Rewterz Threat Alert – FritzFrog Botnet Attacking Millions of SSH Servers
August 20, 2020Rewterz Threat Advisory – Diebold and NCR ATMs contain ‘Deposit Forgery’ Vulnerabilities
August 21, 2020Rewterz Threat Alert – FritzFrog Botnet Attacking Millions of SSH Servers
August 20, 2020Rewterz Threat Advisory – Diebold and NCR ATMs contain ‘Deposit Forgery’ Vulnerabilities
August 21, 2020
Severity
Medium
Analysis Summary
The vulnerability exists because the web-based management interface does not properly validate user-supplied input. An attacker could exploit this vulnerability by persuading a user to click a crafted link. A successful exploit could allow the attacker to execute arbitrary script code in the context of the interface or access sensitive, browser-based information.
Impact
Cross-Site Scripting
Affected Vendors
Cisco
Affected Products
Cisco DCNM Software releases earlier than Release 11.4(1)
Remediation
Refer to Cisco advisory for the list of affected products and their respective patches.
https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-dcnm-xss-5TdMJRB3