A vulnerability in the web-based management interface of Cisco Email Security Appliance (ESA) Switches could allow an unauthenticated, remote attacker to conduct a persistent cross-site scripting (XSS) attack against a user of the affected interface on an affected device. More Information: CSCvb37346. Known Affected Releases: 9.1.1-036 9.7.1-066.
[
{
"product": "Cisco Email Security Appliance (ESA)",
"vendor": "n/a",
"versions": [
{
"status": "affected",
"version": "Cisco Email Security Appliance (ESA)"
}
]
}
]