CVE-2016-6451

Name of the Vulnerable Software and Affected Versions Cisco Prime Collaboration Provisioning version 10.6

Description The issue allows an unauthenticated, remote attacker to conduct a cross-site scripting (XSS) attack against the user of the web interface of the affected system. This is due to multiple vulnerabilities in the web framework code.

Recommendations For Cisco Prime Collaboration Provisioning version 10.6, update to a version that includes the fixes for the identified issues. At the moment, there is no information about a newer version that contains a fix for this vulnerability.