claytonvantol.us
SESSION: secure TLS: 1.3 PID: 1337

clayton@site:~/news$ cat cve-2014-2120-cisco-adaptive-security-appliance-asa.log

CVE-2014-2120 — Cisco Adaptive Security Appliance (ASA) Cross-Site Scripting (XSS) Vulnerability

2024-11-12 • CISA Known Exploited Vulnerability

[event] Cisco Adaptive Security Appliance (ASA) contains a cross-site scripting (XSS) vulnerability in the WebVPN login page. This vulnerability allows remote attackers to inject arbitrary web script or HTML via an unspecified parameter.

> AFFECTED SOFTWARE

Field Value
Vendor Cisco
Product Adaptive Security Appliance (ASA)
CWE CWE-79
CVE ID CVE-2014-2120
Date Added 2024-11-12
Due Date 2024-12-03
Ransomware Campaign Unknown

> MITIGATION

Apply mitigations per vendor instructions or discontinue use of the product if mitigations are unavailable.

Due Date: 2024-12-03

> REFERENCES

← back to terminal

UPTIME: 1337d v2.0.1 privacy LAST LOGIN: 2026-05-30 20:36:09 UTC