Lucene search
HistoryFeb 12, 2015 - 1:59 a.m.
CVE-2015-0580
6.5 Medium
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
SINGLE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:S/C:P/I:P/A:P
8 High
AI Score
Confidence
Low
0.002 Low
EPSS
Percentile
61.4%
Multiple SQL injection vulnerabilities in the ACS View reporting interface pages in Cisco Secure Access Control System (ACS) before 5.5 patch 7 allow remote authenticated administrators to execute arbitrary SQL commands via crafted HTTPS requests, aka Bug ID CSCuq79027.
Affected configurations
Node
ciscosecure_access_control_systemRange≤5.5.0.46
Related
prion
prion
Sql injection
2015-02-12 01:59:00
cisco
cisco
Cisco Secure Access Control System SQL Injection Vulnerability
2015-02-11 16:00:00
cvelist
cvelist
CVE-2015-0580
2015-02-12 01:00:00
cve
cve
CVE-2015-0580
2015-02-12 01:59:21
nessus
nessus
securityvulns
securityvulns
Cisco Secure Access Control System SQL injection
2015-02-16 00:00:00
6.5 Medium
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
SINGLE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:S/C:P/I:P/A:P
8 High
AI Score
Confidence
Low
0.002 Low
EPSS
Percentile
61.4%
Related for NVD:CVE-2015-0580