CVE-2013-3396

CVE Database · CVE-2013-3396

CVE-2013-3396

· N/AModified

CVSS v3.1

N/A

EPSS

0.93%

Published

Jun 26, 2013

Modified

Apr 28, 2026

Public PoC / Exploit

All weaponized →

No public PoC or exploit code indexed for this CVE.

Links to public security research (Exploit-DB, Nuclei, Trickest, GitHub) for defensive use only.

Description

Cross-site scripting (XSS) vulnerability in the web framework in Cisco Content Security Management on Security Management Appliance (SMA) devices allows remote attackers to inject arbitrary web script or HTML via an unspecified parameter, aka Bug ID CSCuh24749.

Weaknesses (CWE)

CWE-79

Affected Products (1)

cisco · content_security_management_appliancevulnerable

References (4)

http://tools.cisco.com/security/center/content/CiscoSecurityNotice/CVE-2013-3396

Vendor Advisory

http://www.securityfocus.com/bid/60829

http://tools.cisco.com/security/center/content/CiscoSecurityNotice/CVE-2013-3396

Vendor Advisory

http://www.securityfocus.com/bid/60829

KEV Catalog EPSS Scores Vendors All CVEs