CVE-2014-3344

CVE-2014-3344 affects Cisco Transport Gateway for Smart Call Home (TG-SCH) 4.0. Multiple cross-site scripting (XSS) flaws exist in the web framework, allowing remote attackers to inject arbitrary web scripts or HTML via unspecified parameters. Root cause cited: insufficient input validation in th...