CVE-2014-2120: Cisco Adaptive Security Appliance (ASA) Cross-Site

Cisco Adaptive Security Appliance (ASA) Cross-Site Scripting (XSS) Vulnerability. Cisco Adaptive Security Appliance (ASA) contains a cross-site scripting (XSS) vulnerability in the WebVPN login page. This vulnerability allows remote attackers to inject arbitrary web script or HTML via an unspecified parameter.

• CISA KEV-listed (remediation due 2024-12-03)
• EPSS 75.1% (98.9% percentile)

Browse the CVE database

Read the full analysis on IntelFusions