CVE-2019-1882

Name of the Vulnerable Software and Affected Versions Cisco Industrial Network Director (affected versions not specified)

Description The issue is related to improper validation of content submitted to the affected application, allowing an authenticated, remote attacker to conduct stored cross-site scripting (XSS) attacks. This is due to a lack of protection for the web page structure. An attacker could exploit this by sending requests with malicious values to the affected system, potentially allowing them to conduct XSS attacks.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.