An advisory discloses a vulnerability that could affect large numbers of organizations using Cisco s Secure Desktop security package and leave users of the product open to potential Cross-Site Scripting (XSS) attacks. The high-severity cross-site scripting flaws could allow remote-code injection on QNAP NAS systems. Read the full article in this article by CNN.com/Threatpost.com: “Cybersecurity Vulnerabilities”” and “”XSS Vulnerability”””
Source: https://threatpost.com/xss-flaws-found-cisco-tools-020210/73468/