Loading
Cross-site scripting (XSS) vulnerability in the WebVPN login page in Cisco Adaptive Security Appliance (ASA) Software allows remote attackers to inject arbitrary web script or HTML via an unspecified parameter, aka Bug ID CSCun19025.
Use CWE-79, Cisco vendor hub and Adaptive Security Appliance Software product page to widen CVE-2014-2120 into its surrounding weakness, vendor, and product context.
Compare it with CVE-2026-20103, CVE-2026-20101 and CVE-2026-20039 for nearby disclosures in the same product family. Additional editorial context is available in Cybersecurity Weekly Roundup: April 22, 2026 — Critical Zero-Days and Framework Failures.