Public exploit available

Public proof-of-concept or exploit code exists (ExploitDB / Metasploit / Nuclei).

CVE-2009-1220 — Cross-site Scripting in Cisco Adaptive Security Appliance

CWE-79 — Cross-site Scripting6 documents6 sources

Severity

4.3MEDIUMNVD

EPSS

18.6%

top 4.72%

CISA KEV

Not in KEV

Exploit

PoC available

Public exploit / PoC exists

Affected products

Cisco Adaptive Security Appliance Cisco IOS

Timeline

PublishedApr 1

Latest updateMay 2

Description

Cross-site scripting (XSS) vulnerability in +webvpn+/index.html in WebVPN on the Cisco Adaptive Security Appliances (ASA) 5520 with software 7.2(4)30 and earlier 7.2 versions including 7.2(2)22, and 8.0(4)28 and earlier 8.0 versions, when clientless mode is enabled, allows remote attackers to inject arbitrary web script or HTML via the Host HTTP header.

CVSS vector

AV:N/AC:M/C:N/I:P/A:NExploitability: 8.6 | Impact: 2.9

Affected Packages2 packages

▶NVDcisco/adaptive_security_appliance5520

▶NVDcisco/ios7.2\(2\)22

🔴Vulnerability Details

GHSA

GHSA-v3f3-x57x-hfg9: Cross-site scripting (XSS) vulnerability in +webvpn+/index↗2022-05-02

▶

CVEList

CVE-2009-1220: Cross-site scripting (XSS) vulnerability in +webvpn+/index↗2009-04-01

▶

💥Exploits & PoCs

Exploit-DB

Cisco ASA Appliance 7.x/8.0 WebVPN - Cross-Site Scripting↗2009-03-31

▶

🔍Detection Rules

Suricata

ET WEB_SPECIFIC_APPS Cisco Adaptive Security Appliance WebVPN Cross Site Scripting Attempt↗2010-07-30

▶

📋Vendor Advisories

Cisco

Cisco ASA Software WebVPN Cross-Site Scripting Vulnerability↗2009-04-01

▶