CVE-2018-0386

Name of the Vulnerable Software and Affected Versions: Cisco Unified Communications Domain Manager Software (affected versions not specified)

Description: The issue is related to improper validation of input passed to the software, allowing an unauthenticated, remote attacker to conduct a cross-site scripting (XSS) attack. An attacker could exploit this by persuading a user to access a malicious URL, potentially accessing sensitive browser-based information or performing arbitrary actions in the security context of the user.

Recommendations: At the moment, there is no information about a newer version that contains a fix for this vulnerability.