CVE-2014-5348
19.08.2014, 19:55
Cross-site scripting (XSS) vulnerability in apps/zxtm/locallog.cgi in Riverbed Stingray (aka SteelApp) Traffic Manager Virtual Appliance 9.6 patchlevel 9620140312 allows remote attackers to inject arbitrary web script or HTML via the logfile parameter.
| Vendor | Product | Version |
|---|---|---|
| riverbed | steelapp_traffic_manager | 9.6:9620140312 |
𝑥
= Vulnerable software versions