CVE-2014-2120CISA KEVEPSS p96.1%

CVE-2014-2120Cisco Adaptive Security Appliance (ASA) Cross-Site Scripting (XSS) Vulnerability

Cisco / Adaptive Security Appliance (ASA)

Description

Cisco Adaptive Security Appliance (ASA) contains a cross-site scripting (XSS) vulnerability in the WebVPN login page. This vulnerability allows remote attackers to inject arbitrary web script or HTML via an unspecified parameter.

Scoring

EPSS14.03% probability of exploitation · percentile 96.1% · 2026-06-19T12:03:05Z

CISA KEV entry

Added to KEV: 2024-11-12

(incoming)1

TypeTargetConfidenceTier
KEVEntryCisco Adaptive Security Appliance (ASA) Cross-Site Scripting (XSS) Vulnerabilitykev-cve-2014-21200%live

Related by meaning· 6

Nearest entities by semantic similarity across the cs-graph corpus.

CVE
Cisco ASA and FTD Cross-Site Scripting (XSS) Vulnerability
CVE
CVE-2026-20069
CVE
Cisco Secure Firewall Adaptive Security Appliance (ASA) and Secure Firewall Threat Defense (FTD) Buffer Overflow Vulnerability
CVE
Cisco Adaptive Security Appliance (ASA) Denial-of-Service Vulnerability
CVE
CVE-2025-20263
CVE
CVE-2025-20243
Sourced from NVD + CISA KEV + FIRST.org EPSS. Curated for EU compliance use cases by Adam Lundqvist, Founder at SQUR.