Lucene search
HistoryJul 12, 2013 - 9:55 p.m.
CVE-2013-3422
cisco
secure access
control system
acs
xss
vulnerability
administration pages
cve-2013-3422
nvd
4.3 Medium
CVSS2
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:M/Au:N/C:N/I:P/A:N
5.8 Medium
AI Score
Confidence
High
0.001 Low
EPSS
Percentile
48.6%
Cross-site scripting (XSS) vulnerability in Administration pages in Cisco Secure Access Control System (ACS) allows remote attackers to inject arbitrary web script or HTML via an unspecified parameter, aka Bug ID CSCud75165.
Affected configurations
Node
ciscosecure_access_control_systemMatch-
| CPE | Name | Operator | Version |
|---|---|---|---|
| cisco:secure_access_control_system | cisco secure access control system | eq | - |
Related
cvelist
cvelist
CVE-2013-3422
2013-07-12 21:00:00
cisco
cisco
prion
prion
Cross site scripting
2013-07-12 21:55:00
nvd
nvd
CVE-2013-3422
2013-07-12 21:55:01
4.3 Medium
CVSS2
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:M/Au:N/C:N/I:P/A:N
5.8 Medium
AI Score
Confidence
High
0.001 Low
EPSS
Percentile
48.6%
Related for CVE-2013-3422