CVE-2026-20070 | Cisco Secure Firewall Adaptive Security Appliance Software VPN Web Service cross site scripting (cisco-sa-asaftd-webvpn-xss-uwjc4HR)

Inserito da Angelo Barbosa | Mar 4, 2026 | CVE

A vulnerability, which was classified as problematic, was found in Cisco Secure Firewall Adaptive Security Appliance Software and Secure Firewall Threat Defense Software. This affects an unknown part of the component VPN Web Service. Such manipulation leads to basic cross site scripting.

This vulnerability is uniquely identified as CVE-2026-20070. The attack can be launched remotely. No exploit exists.

You should upgrade the affected component.

CVE-2026-20070 | Cisco Secure Firewall Adaptive Security Appliance Software VPN Web Service cross site scripting (cisco-sa-asaftd-webvpn-xss-uwjc4HR)

Post correlati

CVE-2022-49011 | Linux Kernel up to 6.0.11 hwmon nv1a_ram_new reference count

CVE-2024-7892 | adstxt Plugin up to 1.0.0 on WordPress Setting cross-site request forgery

CVE-2023-51497 | Woo Commerce Ship to Multiple Addresses Plugin up to 3.8.9 on WordPress authorization

CVE-2024-37931 | Creativthemes Point Plugin up to 1.1 on WordPress cross-site request forgery