Cisco Enterprise NFV Infrastructure Software Cross-Site Scripting Vulnerability
Description
A vulnerability in the web-based management interface of Cisco Enterprise NFV Infrastructure Software (NFVIS) could allow an authenticated, remote attacker to conduct a cross-site scripting (XSS) attack against a user of the web-based management interface. The vulnerability is due to improper input validation of log file content stored on the affected device. An attacker could exploit this vulnerability by modifying a log file with malicious code and getting a user to view the modified log file. A successful exploit could allow the attacker to execute arbitrary script code in the context of the affected interface or to access sensitive, browser-based information.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Cisco NFVIS web-based management interface XSS via log file content allows authenticated remote attackers to execute arbitrary script in user's browser.
Vulnerability
A stored cross-site scripting (XSS) vulnerability exists in the web-based management interface of Cisco Enterprise NFV Infrastructure Software (NFVIS). The issue stems from improper input validation of log file content, allowing an authenticated attacker to inject malicious script into log files. When a user views the affected log file through the web interface, the script executes. Versions earlier than Release 4.4.1 are affected [1].
Exploitation
An attacker must have authenticated access to the NFVIS device and the ability to modify log files (e.g., via administrative functions). The attacker injects malicious script into a log file and then tricks a user (often another administrator) into viewing that log file via the web-based management interface. No additional user interaction beyond viewing the log is required for script execution [1].
Impact
Successful exploitation allows the attacker to execute arbitrary script code in the context of the affected web interface, potentially accessing sensitive browser-based information such as session tokens or cookies. The attack is confined to the browser session of the user viewing the log file and does not directly compromise the underlying NFVIS system [1].
Mitigation
Cisco has released software updates to address this vulnerability. The fixed version is NFVIS Release 4.4.1. No workarounds are available. Users should upgrade to the latest release. As of publication, no exploitation in the wild has been reported [1].
AI Insight generated on May 26, 2026. Synthesized from this CVE's description and the cited reference URLs; citations are validated against the source bundle.
Affected products
2- Cisco/Cisco Enterprise NFV Infrastructure Softwarev5Range: n/a
Patches
0No patches discovered yet.
Vulnerability mechanics
AI mechanics synthesis has not run for this CVE yet.
References
1- tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-nfvis-xss-smsz5Vhbmitrevendor-advisoryx_refsource_CISCO
News mentions
0No linked articles in our index yet.