The Vigil@nce team watches public vulnerabilities impacting your computers, and then offers security solutions, a vigilance database and tools to fix them.

Computer vulnerabilities of Cisco Access Control Server

Cisco Secure Access Control Server: external XML entity injection
An attacker can transmit malicious XML data to Cisco Secure Access Control Server, in order to read a file, scan sites, or trigger a denial of service...
CERTFR-2018-AVI-423, cisco-sa-20180905-acsxxe, CSCvi85318, CVE-2018-0414, VIGILANCE-VUL-27157
Linux kernel: denial of service via FragmentSmack
An attacker can generate a fatal error via FragmentSmack of the Linux kernel, in order to trigger a denial of service...
ADV180022, CERTFR-2018-AVI-390, CERTFR-2018-AVI-392, CERTFR-2018-AVI-419, CERTFR-2018-AVI-457, CERTFR-2018-AVI-478, CERTFR-2018-AVI-533, CERTFR-2019-AVI-233, CERTFR-2019-AVI-242, CERTFR-2020-AVI-207, cisco-sa-20180824-linux-ip-fragment, CVE-2018-5391, DLA-1466-1, DLA-1529-1, DSA-2019-062, DSA-4272-1, FragmentSmack, JSA10917, K74374841, openSUSE-SU-2018:2404-1, openSUSE-SU-2018:2407-1, openSUSE-SU-2019:0274-1, PAN-SA-2018-0012, RHSA-2018:2785-01, RHSA-2018:2791-01, RHSA-2018:2846-01, RHSA-2018:2924-01, RHSA-2018:2925-01, RHSA-2018:2933-01, RHSA-2018:2948-01, RHSA-2018:3083-01, RHSA-2018:3096-01, RHSA-2018:3459-01, RHSA-2018:3540-01, RHSA-2018:3586-01, RHSA-2018:3590-01, sk134253, SSA-377115, SUSE-SU-2018:2344-1, SUSE-SU-2018:2374-1, SUSE-SU-2018:2380-1, SUSE-SU-2018:2381-1, SUSE-SU-2018:2596-1, SUSE-SU-2019:0541-1, SUSE-SU-2019:1289-1, SYMSA1467, Synology-SA-18:44, USN-3740-1, USN-3740-2, USN-3741-1, USN-3741-2, USN-3741-3, USN-3742-1, USN-3742-2, USN-3742-3, VIGILANCE-VUL-27009, VU#641765
Cisco Secure ACS: code execution via Report Component
An attacker can use a vulnerability via Report Component of Cisco Secure ACS, in order to run code...
CERTFR-2018-AVI-211, cisco-sa-20180502-acs1, CSCve69037, CVE-2018-0253, VIGILANCE-VUL-26027
Cisco Secure Access Control System: code execution via Java Deserialization
An attacker can use a vulnerability via Java Deserialization of Cisco Secure Access Control System, in order to run code...
CERTFR-2018-AVI-116, cisco-sa-20180307-acs2, CSCvh25988, CVE-2018-0147, VIGILANCE-VUL-25489
Cisco Secure Access Control Server: external XML entity injection
An attacker can transmit malicious XML data to Cisco Secure Access Control Server, in order to read a file, scan sites, or trigger a denial of service...
cisco-sa-20180307-acs1, CSCve70616, CVE-2018-0218, VIGILANCE-VUL-25483
Cisco Secure Access Control Server: external XML entity injection
An attacker can transmit malicious XML data to Cisco Secure Access Control Server, in order to read a file, scan sites, or trigger a denial of service...
cisco-sa-20180307-acs, CSCve70595, CVE-2018-0207, VIGILANCE-VUL-25482
Cisco Secure Access Control System: information disclosure
An attacker can bypass access restrictions to data of Cisco Secure Access Control System, in order to obtain sensitive information...
cisco-sa-20171129-acs, CSCvf66155, CVE-2017-12354, VIGILANCE-VUL-24575
Cisco ACS: Cross Site Scripting
An attacker can trigger a Cross Site Scripting of Cisco ACS, in order to run JavaScript code in the context of the web site...
cisco-sa-20170726-acs, CSCve70587, CVE-2017-6769, VIGILANCE-VUL-23378
Cisco Secure Access Control System: external XML entity injection
An authenticated attacker can transmit malicious XML data to Cisco Secure Access Control System, in order to read a file, scan sites, or trigger a denial of service...
CERTFR-2017-AVI-052, cisco-sa-20170215-acs1, CVE-2017-3839, VIGILANCE-VUL-21867
Cisco Secure Access Control System: Cross Site Scripting
An attacker can trigger a Cross Site Scripting of Cisco Secure Access Control System, in order to run JavaScript code in the context of the web site...
CERTFR-2017-AVI-052, cisco-sa-20170215-acs, CVE-2017-3838, VIGILANCE-VUL-21868
Our database contains other pages. You can request a free trial to read them.