The Vigil@nce team watches public vulnerabilities impacting your computers, and then offers security solutions, a database and tools to fix them.

Computer vulnerabilities of Cisco Access Control System

4 Cisco Secure ACS: code execution via Report Component
An attacker can use a vulnerability via Report Component of Cisco Secure ACS, in order to run code...
CERTFR-2018-AVI-211, cisco-sa-20180502-acs1, CSCve69037, CVE-2018-0253, VIGILANCE-VUL-26027
4 Cisco Secure Access Control System: code execution via Java Deserialization
An attacker can use a vulnerability via Java Deserialization of Cisco Secure Access Control System, in order to run code...
CERTFR-2018-AVI-116, cisco-sa-20180307-acs2, CSCvh25988, CVE-2018-0147, VIGILANCE-VUL-25489
2 Cisco Secure Access Control Server: external XML entity injection
An attacker can transmit malicious XML data to Cisco Secure Access Control Server, in order to read a file, scan sites, or trigger a denial of service...
cisco-sa-20180307-acs1, CSCve70616, CVE-2018-0218, VIGILANCE-VUL-25483
2 Cisco Secure Access Control Server: external XML entity injection
An attacker can transmit malicious XML data to Cisco Secure Access Control Server, in order to read a file, scan sites, or trigger a denial of service...
cisco-sa-20180307-acs, CSCve70595, CVE-2018-0207, VIGILANCE-VUL-25482
2 Cisco Secure Access Control System: information disclosure
An attacker can bypass access restrictions to data of Cisco Secure Access Control System, in order to obtain sensitive information...
cisco-sa-20171129-acs, CSCvf66155, CVE-2017-12354, VIGILANCE-VUL-24575
2 Cisco ACS: Cross Site Scripting
An attacker can trigger a Cross Site Scripting of Cisco ACS, in order to run JavaScript code in the context of the web site...
cisco-sa-20170726-acs, CSCve70587, CVE-2017-6769, VIGILANCE-VUL-23378
2 Cisco Secure Access Control System: external XML entity injection
An authenticated attacker can transmit malicious XML data to Cisco Secure Access Control System, in order to read a file, scan sites, or trigger a denial of service...
CERTFR-2017-AVI-052, cisco-sa-20170215-acs1, CVE-2017-3839, VIGILANCE-VUL-21867
2 Cisco Secure Access Control System: Cross Site Scripting
An attacker can trigger a Cross Site Scripting of Cisco Secure Access Control System, in order to run JavaScript code in the context of the web site...
CERTFR-2017-AVI-052, cisco-sa-20170215-acs, CVE-2017-3838, VIGILANCE-VUL-21868
1 Cisco Secure Access Control System: open redirect
An attacker can deceive the user of Cisco Secure Access Control System, in order to redirect him to a malicious site...
CERTFR-2017-AVI-052, cisco-sa-20170215-acs2, CVE-2017-3840, VIGILANCE-VUL-21866
3 Cisco Secure Access Control System: password disclosure in the configuration interface
An attacker can access to parameter view pages of the Web interface of Cisco Secure Access Control System, in order to obtain sensitive information...
CERTFR-2017-AVI-052, cisco-sa-20170215-acs3, CVE-2017-3841, VIGILANCE-VUL-21864
Our database contains other pages. You can request a free trial to read them.

Display information about Cisco Access Control System: