Cisco Security Manager (CSM) is a set of enterprise-class management applications from Cisco, which are used to configure firewall, VPN, and intrusion protection security services on Cisco networks and security devices. cross-site scripting vulnerability exists in Cisco Security Manager, which can be exploited by attackers to execute arbitrary script code in the interface The vulnerability can be exploited by attackers to execute arbitrary script code or access sensitive browser-based information in the interface context.