2 matches found
CVE-2022-20644
CVE-2022-20644 refers to multiple cross-site scripting vulnerabilities in Cisco Security Manager’s web-based management interface. Root cause: insufficient validation of user-supplied input. Exploitation requires convincing a user to click a crafted link, enabling an unauthenticated, remote attac...
CVE-2022-20644 Cisco Security Manager Cross-Site Scripting Vulnerabilities
Multiple vulnerabilities in the web-based management interface of Cisco Security Manager could allow an unauthenticated, remote attacker to conduct cross-site scripting attacks against a user of the interface. These vulnerabilities are due to insufficient validation of user-supplied input by the...