The vulnerability of the reporting software for Cisco Security Manager extended security environments is related to errors in restricting XML links to external objects. This allows attackers to access confidential information and trigger service failures.
The vulnerability of the reporting software for Cisco Security Manager extended security environments is related to errors in restricting XML links to external objects. Exploiting this vulnerability could allow a malicious actor to gain access to confidential information and cause service failure...