Cisco Catalyst is a series of switches from the American company Cisco. An HTML injection vulnerability exists in Cisco Catalyst SD-WAN Manager that stems from improper validation of user-supplied data in element fields and can be exploited by an authenticated, remote attacker to inject HTML content.