Cisco Bug: CSCun19025 - ASA WebVPN login page XSS vulnerability
Last Modified
Apr 16, 2020
Products (1)
- Cisco ASA 5500-X Series Firewalls
Known Affected Releases
8.4(7) 9.1(4)
Description (partial)
Symptom: A cross-site scripting vulnerability is present in the Cisco ASA WebVPN login page (/+CSCOE+/logon.html). Conditions: This was observed on ASA version 8.4(7) and 9.1(4). Versions prior to this fix are most likely affected by this issue.
Related Community Discussions
Bug details contain sensitive information and therefore require a Cisco.com account to be viewed.
Bug Details Include
- Full Description (including symptoms, conditions and workarounds)
- Status
- Severity
- Known Fixed Releases
- Related Community Discussions
- Number of Related Support Cases