Lucene search

[email protected]CVE-2011-0951

HistoryApr 04, 2011 - 12:27 p.m.

CVE-2011-0951

2011-04-0412:27:00

CWE-255

[email protected]

web.nvd.nist.gov

cisco

secure access control system

acs

remote attackers

user passwords

bug id csctl77440

vulnerability

cve-2011-0951

nvd

7 High

AI Score

Confidence

Low

5 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:L/Au:N/C:N/I:P/A:N

0.015 Low

EPSS

Percentile

86.7%

JSON

The web-based management interface in Cisco Secure Access Control System (ACS) 5.1 before 5.1.0.44.6 and 5.2 before 5.2.0.26.3 allows remote attackers to change arbitrary user passwords via unspecified vectors, aka Bug ID CSCtl77440.

CPENameOperatorVersion
cisco:secure_access_control_systemcisco secure access control systemeq5.2
cisco:secure_access_control_systemcisco secure access control systemeq5.2.0.26
cisco:secure_access_control_systemcisco secure access control systemeq5.1.0.44.2
cisco:secure_access_control_systemcisco secure access control systemeq5.1.0.44
cisco:secure_access_control_systemcisco secure access control systemeq5.1.0.44.5
cisco:secure_access_control_systemcisco secure access control systemeq5.1.0.44.3
cisco:secure_access_control_systemcisco secure access control systemeq5.1.0.44.1
cisco:secure_access_control_systemcisco secure access control systemeq5.2.0.26.2
cisco:secure_access_control_systemcisco secure access control systemeq5.1
cisco:secure_access_control_systemcisco secure access control systemeq5.2.0.26.1

CPE	Name	Operator	Version
cisco:secure_access_control_system	cisco secure access control system	eq	5.2
cisco:secure_access_control_system	cisco secure access control system	eq	5.2.0.26
cisco:secure_access_control_system	cisco secure access control system	eq	5.1.0.44.2
cisco:secure_access_control_system	cisco secure access control system	eq	5.1.0.44
cisco:secure_access_control_system	cisco secure access control system	eq	5.1.0.44.5
cisco:secure_access_control_system	cisco secure access control system	eq	5.1.0.44.3
cisco:secure_access_control_system	cisco secure access control system	eq	5.1.0.44.1
cisco:secure_access_control_system	cisco secure access control system	eq	5.2.0.26.2
cisco:secure_access_control_system	cisco secure access control system	eq	5.1
cisco:secure_access_control_system	cisco secure access control system	eq	5.2.0.26.1

Rows per page:

1-10 of 111

References

secunia.com/advisories/43924

securitytracker.com/id?1025271

www.cisco.com/en/US/products/products_security_advisory09186a0080b74117.shtml

www.securityfocus.com/bid/47093

www.vupen.com/english/advisories/2011/0821

exchange.xforce.ibmcloud.com/vulnerabilities/66471

7 High

AI Score

Confidence

Low

5 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:L/Au:N/C:N/I:P/A:N

0.015 Low

EPSS

Percentile

86.7%

JSON

Related for CVE-2011-0951

securityvulns2 cisco1 prion1 cvelist1