Lucene search
K

20 matches found

EUVD
EUVD
added 2025/10/07 12:30 a.m.4 views

EUVD-2011-0975

Malware in sbrugna...

5CVSS6.4AI score0.01802EPSS
Exploits0References3
EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2006-4969

Malware in sbrugna...

7.5CVSS6.4AI score0.01305EPSS
Exploits0References4
EUVD
EUVD
added 2025/10/07 12:30 a.m.12 views

EUVD-2006-4968

Malware in sbrugna...

4.6CVSS6.4AI score0.00358EPSS
Exploits0References4
EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2012-5903

Malware in sbrugna...

4.3CVSS6.4AI score0.00967EPSS
Exploits0References3
EUVD
EUVD
added 2025/10/07 12:30 a.m.4 views

EUVD-2013-1217

Malware in sbrugna...

7.5CVSS6.2AI score0.01143EPSS
Exploits0References2
RedhatCVE
RedhatCVE
added 2025/05/22 11:21 a.m.12 views

CVE-2013-1124

The Cisco Network Admission Control NAC agent on Mac OS X does not verify the X.509 certificate of an Identity Services Engine ISE server during an SSL session, which allows man-in-the-middle attackers to spoof ISE servers via an arbitrary certificate, aka Bug ID CSCub24309...

5.8CVSS6.9AI score0.00527EPSS
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2013/09/18 12:0 a.m.26 views

Cisco Network Admission Control Guest Server System Software Authentication Bypass (cisco-sa-20110330-nac)

The remote Cisco Network Admission Control NAC Manager may be affected by an access restriction bypass vulnerability in the RADIUS authentication software. This vulnerability could allow a remote/unauthenticated attacker access to a protected network. C Tenable Network Security, Inc...

5CVSS5.6AI score0.01802EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2013/09/05 12:0 a.m.18 views

Cisco Network Admission Control Manager SQL Injection (cisco-sa-20130417-nac)

The remote Cisco Network Admission Control NAC Manager may be affected by a SQL injection vulnerability. This vulnerability could allow an unauthenticated, remote attacker to take full control of the system i.e. access, create or modify any information in the NAC Manager database. C Tenable Netwo...

7.5CVSS5.8AI score0.01143EPSS
Exploits0References2
NVD
NVD
added 2013/04/18 6:55 p.m.27 views

CVE-2013-1177

SQL injection vulnerability in Cisco Network Admission Control NAC Manager before 4.8.3.1 and 4.9.x before 4.9.2 allows remote attackers to execute arbitrary SQL commands via unspecified vectors, aka Bug ID CSCub23095...

7.5CVSS8.3AI score0.01143EPSS
Exploits0References1
NVD
NVD
added 2013/01/31 12:6 p.m.22 views

CVE-2012-6029

Multiple cross-site scripting XSS vulnerabilities in the web-authentication function on the Cisco NAC Appliance 4.9.2 and earlier allow remote attackers to inject arbitrary web script or HTML via the 1 cm or 2 uri parameters to a perfigoweblogin.jsp, or the 3 cm, 4 provider, 5 session, 6 uri, 7...

4.3CVSS5.8AI score0.00967EPSS
Exploits0References2
Prion
Prion
added 2013/01/31 12:6 p.m.15 views

Cross site scripting

Multiple cross-site scripting XSS vulnerabilities in the web-authentication function on the Cisco NAC Appliance 4.9.2 and earlier allow remote attackers to inject arbitrary web script or HTML via the 1 cm or 2 uri parameters to a perfigoweblogin.jsp, or the 3 cm, 4 provider, 5 session, 6 uri, 7...

4.3CVSS6.1AI score0.00967EPSS
Exploits0References2Affected Software1
CVE
CVE
added 2013/01/31 11:0 a.m.50 views

CVE-2012-6029

CVE-2012-6029 affects Cisco NAC Appliance 4.9.2 and earlier. The vulnerability is a set of cross-site scripting flaws in the web-authentication flow, exploitable by an unauthenticated, remote attacker who persuades a user to follow a malicious URL. Specifically, XSS can be triggered via parameter...

4.3CVSS5.9AI score0.00967EPSS
Exploits0References2Affected Software1
Cvelist
Cvelist
added 2013/01/31 11:0 a.m.21 views

CVE-2012-6029

Multiple cross-site scripting XSS vulnerabilities in the web-authentication function on the Cisco NAC Appliance 4.9.2 and earlier allow remote attackers to inject arbitrary web script or HTML via the 1 cm or 2 uri parameters to a perfigoweblogin.jsp, or the 3 cm, 4 provider, 5 session, 6 uri, 7...

5.8AI score0.00967EPSS
Exploits0References2
Prion
Prion
added 2011/10/06 10:55 a.m.15 views

Directory traversal

Directory traversal vulnerability in Cisco Network Admission Control NAC Manager 4.8.x allows remote attackers to read arbitrary files via crafted traffic to TCP port 443, aka Bug ID CSCtq10755...

7.8CVSS7.2AI score0.21593EPSS
Exploits2References6Affected Software1
Cvelist
Cvelist
added 2011/03/31 10:0 p.m.17 views

CVE-2011-0963

The default configuration of the RADIUS authentication feature on the Cisco Network Admission Control NAC Guest Server with software before 2.0.3 allows remote attackers to bypass intended access restrictions and obtain network connectivity via unspecified vectors, aka Bug ID CSCtj66922...

7AI score0.01802EPSS
Exploits0References2
Saint
Saint
added 2008/03/03 12:0 a.m.36 views

Trend Micro OfficeScan Policy Server CGI buffer overflow

Added: 03/03/2008 CVE: CVE-2008-1365 BID: 28020 OSVDB: 42500 Background Trend Micro OfficeScan is a centralized virus and security scan management system. Problem A buffer overflow vulnerability in the Policy Server for Cisco NAC component allows remote attackers to execute arbitrary commands by...

6.4CVSS7.8AI score0.51111EPSS
Exploits8
NVD
NVD
added 2006/09/26 2:7 a.m.12 views

CVE-2006-4983

Cisco NAC allows quarantined devices to communicate over the network with 1 DNS, 2 DHCP, and 3 EAPoUDP, which allows attackers to bypass control methods by tunneling network traffic through one of these protocols...

7.5CVSS6.7AI score0.01305EPSS
Exploits0References3
NVD
NVD
added 2006/09/26 2:7 a.m.15 views

CVE-2006-4982

Cisco NAC maintains an exception list that does not record device properties other than MAC address, which allows physically proximate attackers to bypass control methods and join a local network by spoofing the MAC address of a different type of device, as demonstrated by using the MAC address o...

4.6CVSS6.4AI score0.00358EPSS
Exploits0References3
Cvelist
Cvelist
added 2006/09/26 1:43 a.m.14 views

CVE-2006-4983

Cisco NAC allows quarantined devices to communicate over the network with 1 DNS, 2 DHCP, and 3 EAPoUDP, which allows attackers to bypass control methods by tunneling network traffic through one of these protocols...

6.7AI score0.01305EPSS
Exploits0References3
Cvelist
Cvelist
added 2006/09/26 1:43 a.m.18 views

CVE-2006-4982

Cisco NAC maintains an exception list that does not record device properties other than MAC address, which allows physically proximate attackers to bypass control methods and join a local network by spoofing the MAC address of a different type of device, as demonstrated by using the MAC address o...

6.4AI score0.00358EPSS
Exploits0References3
Rows per page
Query Builder