Total vulnerabilities in the database
A vulnerability in the web-based management interface of Cisco Crosswork Network Services Orchestrator (NSO) could allow an unauthenticated, remote attacker to redirect a user to a malicious web page.
This vulnerability is due to improper input validation of a parameter in an HTTP request. An attacker could exploit this vulnerability by persuading a user to click a crafted link. A successful exploit could allow the attacker to redirect a user to a malicious website.
| Software | From | Fixed in |
|---|---|---|
| cisco / network_services_orchestrator | 5.4 | 5.5.10.1 |
| cisco / network_services_orchestrator | 5.6 | 5.6.14.3 |
| cisco / network_services_orchestrator | 5.7 | 5.7.15 |
| cisco / network_services_orchestrator | 5.8 | 5.8.13.1 |
| cisco / network_services_orchestrator | 6.0 | 6.0.12 |
| cisco / network_services_orchestrator | 6.1 | 6.1.7 |
| cisco / network_services_orchestrator | 6.2 | 6.2.2 |