CVE-2020-3137
CVE-2020-3137 affects Cisco Email Security Appliance (ESA) web-based management interface. The issue is a Cross-Site Scripting (XSS) vulnerability caused by insufficient validation of user-supplied input in the web UI. An unauthenticated, remote attacker could lure a user to click a malicious lin...