Cross-site scripting (XSS) vulnerability in the WebVPN login page in Cisco Adaptive Security Appliance (ASA) Software allows remote attackers to inject arbitrary web script or HTML via an unspecified parameter, aka Bug ID CSCun19025.
History

Wed, 13 Nov 2024 15:15:00 +0000

Type Values Removed Values Added
CPEs cpe:2.3:a:cisco:adaptive_security_appliance_software:-:*:*:*:*:*:*:*
Metrics cvssV3_1

{'score': 5.4, 'vector': 'CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N'}

kev

{'dateAdded': '2024-11-12'}

ssvc

{'options': {'Automatable': 'no', 'Exploitation': 'active', 'Technical Impact': 'partial'}, 'version': '2.0.3'}


cve-icon MITRE

Status: PUBLISHED

Assigner: cisco

Published: 2014-03-19T01:00:00

Updated: 2024-11-13T14:21:34.092Z

Reserved: 2014-02-25T00:00:00

Link: CVE-2014-2120

cve-icon Vulnrichment

Updated: 2024-08-06T10:05:59.771Z

cve-icon NVD

Status : Analyzed

Published: 2014-03-19T01:15:04.007

Modified: 2024-12-19T19:31:33.220

Link: CVE-2014-2120

cve-icon Redhat

No data.