CVE-2014-8022
Cisco Identity Services Engine (ISE) contains cross-site scripting (XSS) vulnerabilities in its web framework due to insufficient input validation on multiple web pages. An unauthenticated, remote attacker could lure a user to a malicious link to execute script in the user’s browser. Cisco’s advi...