CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

The vulnerability of the Context Directory Agent component allows a remote attacker to modify device cache using specially crafted RADIUS protocol packets...

7.1CVSS5.5AI score0.01264EPSS

Exploits0References2Affected Software1

Cisco•added 2014/01/09 4:50 p.m.•25 views

Cisco Context Directory Agent Replayed RADIUS Accounting Message Vulnerability

A vulnerability in RADIUS message processing of Cisco Context Directory Agent CDA could allow an unauthenticated, remote attacker to affect the contents of the CDA cache. The vulnerability is due to insufficient validation of RADIUS accounting messages. An attacker could exploit this vulnerabilit...

4.3CVSS6.4AI score0.02271EPSS

Exploits0References1

Cisco•added 2014/01/09 3:46 p.m.•29 views

Cisco Context Directory Agent Mappings Page Cross-Site Scripting Vulnerability

A vulnerability in the Mappings page of Cisco Context Directory Agent CDA could allow an unauthenticated, remote attacker to conduct a cross-site scripting XSS attack. The vulnerability is due to insufficient validation of user-supplied input. An attacker could exploit this vulnerability by...

4.3CVSS5.5AI score0.02233EPSS

Exploits0References1

Cisco•added 2014/01/09 1:11 p.m.•18 views

Cisco Context Directory Agent Privilege Escalation Vulnerability

A vulnerability in the administrative interface of Cisco Context Directory Agent CDA could allow an authenticated, remote attacker to perform administrative actions. The vulnerability is due to insufficient authorization enforcement. An attacker could exploit this vulnerability by accessing an...

4.9CVSS6.3AI score0.01764EPSS

Exploits0References1

NVD•added 2014/01/08 9:55 p.m.•15 views

CVE-2014-0654

Cisco Context Directory Agent CDA allows remote attackers to modify the cache via a replay attack involving crafted RADIUS accounting messages, aka Bug ID CSCuj45383...

4.3CVSS6.6AI score0.02271EPSS

Exploits0References7

Prion•added 2014/01/08 9:55 p.m.•14 views

Cross site scripting

Cross-site scripting XSS vulnerability in the Mappings page in Cisco Context Directory Agent CDA allows remote attackers to inject arbitrary web script or HTML via a crafted URL, aka Bug ID CSCuj45358...

4.3CVSS6AI score0.02233EPSS

Exploits0References7

Prion•added 2014/01/08 9:55 p.m.•18 views

Code injection

Cisco Context Directory Agent CDA allows remote authenticated users to trigger the omission of certain user-interface data via crafted field values, aka Bug ID CSCuj45353...

4CVSS6.7AI score0.02017EPSS

Exploits0References5

Cisco•added 2014/01/08 9:51 p.m.•28 views

Cisco Context Directory Agent Hidden Input Vulnerability

A vulnerability in certain input fields of Cisco Context Directory Agent CDA could allow an authenticated, remote attacker to hide values that are entered in the affected input fields. The vulnerability is due to insufficient input validation. An attacker could exploit this vulnerability by...

4CVSS6.4AI score0.02017EPSS

Exploits0References1

CVE•added 2014/01/08 9:0 p.m.•38 views

CVE-2014-0656

Cisco Context Directory Agent (CDA) contains a vulnerability where an authenticated remote attacker can hide values entered in affected input fields due to insufficient input validation. This can cause the UI to omit user-entered data. Exploitation requires authentication to a targeted device. Ci...

4CVSS6.4AI score0.02017EPSS

Exploits0References5Affected Software1

Cvelist•added 2014/01/08 9:0 p.m.•20 views

CVE-2014-0654

Cisco Context Directory Agent CDA allows remote attackers to modify the cache via a replay attack involving crafted RADIUS accounting messages, aka Bug ID CSCuj45383...

6.6AI score0.02271EPSS

Exploits0References7

Cvelist•added 2013/04/29 9:0 p.m.•29 views

CVE-2013-1196

The command-line interface in Cisco Secure Access Control System ACS, Identity Services Engine Software, Context Directory Agent, Application Networking Manager ANM, Prime Network Control System, Prime LAN Management Solution LMS, Prime Collaboration, Unified Provisioning Manager, Network Service...

6.1AI score0.003EPSS

Exploits0References1

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by