{"schema_version":"public-product-v1.1","generated_at":"2026-06-10T08:46:05Z","exposure_verdict":"not_assessed","verdict_reason":"Public evidence does not evaluate exact release, platform, enabled features, configuration, compensating controls, or live exposure.","advisory":{"id":"cisco-sa-20161005-chs","slug":"cisco-sa-20161005-chs","vendor":"Cisco","title":"Cisco Host Scan Package Cross-Site Scripting Vulnerability","summary":"A vulnerability in the Cisco Host Scan package could allow an unauthenticated, remote attacker to conduct a cross-site scripting (XSS) attack against a user of a Cisco Adaptive Security Appliance (ASA) Web VPN deployment. The vulnerability is due to insufficient input validation of a user-supplied value. An attacker could exploit this vulnerability by persuading a user to click a specific link. For additional information about cross-site scripting attacks and the methods used to exploit these vulnerabilities, see the following resources: Cisco Applied Mitigation Bulletin: Understanding Cross-Site Scripting (XSS) Threat Vectors OWASP reference page: Cross-Site Scripting_(XSS) Cisco has not released software updates that address this vulnerability. There are no workarounds that address this vulnerability. This advisory is available at the following link: https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20161005-chs","severity":"Medium","published_at":"2016-10-05T16:00:00Z","updated_at":"2016-10-05T16:00:00Z","source_url":"https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20161005-chs","csaf_url":"https://sec.cloudapps.cisco.com/security/center/contentjson/CiscoSecurityAdvisory/cisco-sa-20161005-chs/csaf/cisco-sa-20161005-chs.json","exposure_verdict":"not_assessed","verdict_reason":"Public evidence does not evaluate exact release, platform, enabled features, configuration, compensating controls, or live exposure."},"freshness":{"last_source_refreshed_at":"2026-05-26T00:00:03Z","latest_source_refresh_at":"2026-05-26T00:00:03Z","oldest_source_refresh_at":"2026-05-22T00:16:33Z","all_sources_fresh":false,"sources":[{"source":"cisco_advisories","label":"Cisco advisories","last_success_at":"2026-05-26T00:00:03Z","stale":true},{"source":"cisco_csaf","label":"Cisco CSAF","last_success_at":"2026-05-25T03:03:26Z","stale":true},{"source":"nvd_cves","label":"NVD CVEs","last_success_at":"2026-05-22T00:16:33Z","stale":true},{"source":"cisa_kev","label":"CISA KEV","last_success_at":"2026-05-22T00:16:34Z","stale":true},{"source":"first_epss","label":"EPSS","last_success_at":"2026-05-22T00:16:40Z","stale":true}]},"summary":{"cve_count":1,"visible_product_count":1,"public_evidence_count":1,"kev_count":0,"highest_epss":0.0025,"highest_cvss":6.1},"cves":[{"id":"CVE-2016-6436","description":"Cross-site scripting (XSS) vulnerability in HostScan Engine 3.0.08062 through 3.1.14018 in the Cisco Host Scan package, as used in ASA Web VPN, allows remote attackers to inject arbitrary web script or HTML via a crafted URL, aka Bug ID CSCuz14682.","severity":"MEDIUM","kev":false,"epss":{"score":0.0025,"percentile":0.48366,"score_date":"2026-05-21","updated_at":"2026-05-22T00:16:38Z"},"cvss_score":6.1,"cvss_source":"NVD","cwe":"CWE-79","published_at":"2016-10-06T10:59:17Z","modified_at":"2026-05-06T22:30:45Z"}],"public_evidence":[{"product":{"name":"Cisco HostScan Engine","slug":"cisco-hostscan-engine","vendor":"Cisco"},"cve":{"id":"CVE-2016-6436"},"evidence_type":"structured_affected","evidence_label":{"scope":"CSAF product evidence","label":"product_status known affected"},"evidence_source":"Cisco CSAF","source":"Cisco CSAF","source_document_fetched_at":"2026-05-19T19:56:38Z","csaf_status":"known_affected","csaf_product_status":"known_affected","csaf_product_status_path":"vulnerabilities[].product_status.known_affected","raw_product_name":"Cisco HostScan Engine","exposure_verdict":"not_assessed","verdict_reason":"Public evidence does not evaluate exact release, platform, enabled features, configuration, compensating controls, or live exposure.","exposure_verdict_reason":"Public evidence does not evaluate exact release, platform, enabled features, configuration, compensating controls, or live exposure.","kev":false,"epss":{"score":0.0025,"score_date":"2026-05-21","updated_at":"2026-05-22T00:16:38Z"},"cvss_score":6.1,"cvss_source":"NVD","published_at":"2016-10-05T16:00:00Z","updated_at":"2016-10-05T16:00:00Z","advisory_updated_at":"2016-10-05T16:00:00Z","source_url":"https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20161005-chs","row_display_order":1}]}