CVE-2018-0452

CVE-2018-0452: Cisco Tetration Analytics Cross-Site Scripting Vulnerability

Vendor Cisco
Product Cisco Tetration Analytics
Weakness CWE-79 · XSS
Published October 5, 2018
Last update November 26, 2024
View on NVD All CVEs

CVSS base score

What the vulnerability does

01Description

A vulnerability in the web-based management interface of Cisco Tetration Analytics could allow an unauthenticated, remote attacker to conduct a cross-site scripting (XSS) attack against a user of the web-based management interface of an affected device. The vulnerability is due to insufficient validation of user-supplied input by the web-based management interface. An attacker could exploit this vulnerability by persuading a user of the interface to click a customized link. A successful exploit could allow the attacker to execute arbitrary script code in the context of the interface or access sensitive browser-based information.

Key dates

02Disclosure timeline

October 5, 2018 CVE published
November 26, 2024 Record updated

Related vulnerabilities

04Related CVE

CVE-2025-9834 PHPGurukul Small CRM registration.php cross site scripting CVE-2025-23546 WordPress RDP inGroups+ plugin <= 1.0.6 - Cross Site Scripting (XSS) vulnerability CVE-2024-10701 PHPGurukul Car Rental Portal search.php cross site scripting CVE-2025-22778 WordPress Lijit Search Plugin <= 1.1 - Reflected Cross Site Scripting (XSS) vulnerability CVE-2026-4610 ProfileGrid <= 5.9.9.2 - Authenticated (Subscriber+) Stored Cross-Site Scripting via Message Content