cve,link,title,description,vendor,products,score,severity,epss,cisa,cisa_published,article,ransomware,exploited,exploited_date,poc,trended,trended_no_1,trended_no_1_date,published,trended_score
CVE-2018-0149,https://securityvulnerability.io/vulnerability/CVE-2018-0149,,"A vulnerability in the web-based management interface of Cisco Integrated Management Controller Supervisor Software and Cisco UCS Director Software could allow an authenticated, remote attacker to conduct a Document Object Model-based (DOM-based), stored cross-site scripting (XSS) attack against a user of the web-based management interface of an affected device. The vulnerability is due to insufficient validation of user-supplied input by the web-based management interface of the affected software. An attacker could exploit this vulnerability by persuading a user of the affected interface to click a malicious link. A successful exploit could allow the attacker to execute arbitrary script code in the context of the affected interface or allow the attacker to access sensitive browser-based information on the affected device. Cisco Bug IDs: CSCvh12994.",Cisco,Cisco Integrated Management Controller Supervisor And Cisco Ucs Director Unknown,4.8,MEDIUM,0.0007800000021234155,false,,false,false,false,,,false,false,,2018-06-07T21:00:00.000Z,0
CVE-2018-0148,https://securityvulnerability.io/vulnerability/CVE-2018-0148,,"A vulnerability in the web-based management interface of Cisco UCS Director Software and Cisco Integrated Management Controller (IMC) Supervisor Software could allow an unauthenticated, remote attacker to conduct a cross-site request forgery (CSRF) attack and perform arbitrary actions on an affected system. The vulnerability is due to insufficient CSRF protection by the web-based management interface of the affected software. An attacker could exploit this vulnerability by persuading a user of the affected interface to click a malicious link. A successful exploit could allow the attacker to perform arbitrary actions, via the user's web browser and with the user's privileges, on an affected system. Cisco Bug IDs: CSCvf71929.",Cisco,Cisco Ucs Director And Cisco Integrated Management Controller Supervisor,8.8,HIGH,0.0023799999617040157,false,,false,false,false,,,false,false,,2018-02-22T00:00:00.000Z,0