Lucene search

CiscoCISCO-SA-20111005-NAC

HistoryOct 05, 2011 - 4:00 p.m.

Directory Traversal Vulnerability in Cisco Network Admission Control Manager

2011-10-0516:00:00

tools.cisco.com

7.8 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

NONE

Availability Impact

NONE

AV:N/AC:L/Au:N/C:C/I:N/A:N

0.015 Low

EPSS

Percentile

86.8%

JSON

Cisco Network Admission Control (NAC) Manager contains a directory
traversal vulnerability that may allow an unauthenticated attacker to obtain
system information.

There are no workarounds to mitigate this
vulnerability.

Cisco has released software updates that address this vulnerability.

This advisory is posted at https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20111005-nac[“https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20111005-nac”].

CPENameOperatorVersion
cisco nac appliance softwareeqany
cisco nac appliance softwareeqany

CPE	Name	Operator	Version
	cisco nac appliance software	eq	any
	cisco nac appliance software	eq	any

References

sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20111005-nac

7.8 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

NONE

Availability Impact

NONE

AV:N/AC:L/Au:N/C:C/I:N/A:N

0.015 Low

EPSS

Percentile

86.8%

JSON

Related for CISCO-SA-20111005-NAC