2 matches found
Cisco Secure Access Control (cisco-sa-20180502-acs1)
The version of Cisco Secure Access Control System ACS running on the remote host is prior to 5.8.0.32.7 Cumulative Patch. It is, therefore, affected by a flaw in the ACS Report component that is triggered when handling specially crafted Action Message Format AMF messages. This may allow a remote...
CVE-2018-0253
Cisco Secure Access Control System (ACS) is affected by CVE-2018-0253 in the ACS Report component. The issue stems from insufficient validation of the Action Message Format (AMF) protocol, allowing an unauthenticated, remote attacker to execute arbitrary commands on the ACS device, with commands ...