Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
prionPRIOn knowledge basePRION:CVE-2018-0207
HistoryMar 08, 2018 - 7:29 a.m.

Xxe

2018-03-0807:29:00
PRIOn knowledge base
www.prio-n.com

4 Medium

AI Score

Confidence

High

0.002 Low

EPSS

Percentile

56.8%

JSON

A vulnerability in the web-based user interface of the Cisco Secure Access Control Server prior to 5.8 patch 9 could allow an unauthenticated, remote attacker to gain read access to certain information in the affected system. The vulnerability is due to improper handling of XML External Entities (XXEs) when parsing an XML file. An attacker could exploit this vulnerability by convincing the administrator of an affected system to import a crafted XML file. Cisco Bug IDs: CSCve70595.

Related

cve 1
ptsecurity 1
cvelist 1
nvd 1
cisco 1
cve
cve
CVE-2018-0207
2018-03-08 07:29:00
ptsecurity
ptsecurity
PT-2018-30: XXE Injection in Cisco Secure ACS
2017-01-06 00:00:00
cvelist
cvelist
CVE-2018-0207
2018-03-08 07:00:00
nvd
nvd
CVE-2018-0207
2018-03-08 07:29:00
cisco
cisco
Cisco Secure Access Control Server XML External Entity Injection Vulnerability
2018-03-07 16:00:00

4 Medium

AI Score

Confidence

High

0.002 Low

EPSS

Percentile

56.8%

JSON
Related for PRION:CVE-2018-0207
cve1ptsecurity1cvelist1nvd1cisco1