VYPR
Medium severity6.1NVD Advisory· Published Jun 13, 2017· Updated Jun 17, 2026

CVE-2017-6661

CVE-2017-6661

Description

A vulnerability in the web-based management interface of Cisco Email Security Appliance (ESA) and Cisco Content Security Management Appliance (SMA) could allow an unauthenticated, remote attacker to conduct a cross-site scripting (XSS) attack against a user of the web-based management interface of an affected device, aka Message Tracking XSS. More Information: CSCvd30805 CSCvd34861. Known Affected Releases: 10.0.0-203 10.1.0-049.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

4
  • cpe:2.3:a:cisco:content_security_management_appliance:10.0.0-203:*:*:*:*:*:*:*+ 1 more
    • cpe:2.3:a:cisco:content_security_management_appliance:10.0.0-203:*:*:*:*:*:*:*
    • cpe:2.3:a:cisco:content_security_management_appliance:10.1.0-049:*:*:*:*:*:*:*
  • cpe:2.3:a:cisco:email_security_appliance:10.0.0-203:*:*:*:*:*:*:*+ 1 more
    • cpe:2.3:a:cisco:email_security_appliance:10.0.0-203:*:*:*:*:*:*:*
    • cpe:2.3:a:cisco:email_security_appliance:10.1.0-049:*:*:*:*:*:*:*

Patches

Vulnerability mechanics

References

4

News mentions

0

No linked articles in our index yet.