CVE-2015-4198

Name of the Vulnerable Software and Affected Versions Cisco Web Security Appliance (WSA) versions 8.5.0-497

Description A cross-site scripting (XSS) issue exists in the web framework, allowing remote attackers to inject arbitrary web script or HTML via an unspecified HTTP header.

Recommendations For version 8.5.0-497, update to a newer version that contains a fix for this issue.