CVE-2017-3838
Cisco Secure Access Control System (ACS) contains a DOM-based XSS vulnerability that could be exploited by an unauthenticated, remote attacker via the web interface. The issue arises from insufficient input validation of a user-supplied value and affects at least release 5.8(2.5). The CVE entry i...