Lucene search
K

8 matches found

EUVD
EUVD
added 2025/10/07 12:30 a.m.6 views

EUVD-2012-5903

Malware in sbrugna...

4.3CVSS6.4AI score0.00967EPSS
Exploits0References3
Cisco
Cisco
added 2013/02/11 3:39 p.m.23 views

Cisco NAC Appliance Cross-Site Scripting Vulnerability

Cisco NAC Appliance contains a vulnerability that could allow an unauthenticated, remote attacker to conduct cross-site scripting attacks. The vulnerability is due to insufficient validation of user-supplied input processed by the affected software. An unauthenticated, remote attacker could explo...

4.3CVSS2.5AI score0.00967EPSS
Exploits0References1
NVD
NVD
added 2013/01/31 12:6 p.m.23 views

CVE-2012-6029

Multiple cross-site scripting XSS vulnerabilities in the web-authentication function on the Cisco NAC Appliance 4.9.2 and earlier allow remote attackers to inject arbitrary web script or HTML via the 1 cm or 2 uri parameters to a perfigoweblogin.jsp, or the 3 cm, 4 provider, 5 session, 6 uri, 7...

4.3CVSS5.8AI score0.00967EPSS
Exploits0References2
Prion
Prion
added 2013/01/31 12:6 p.m.16 views

Cross site scripting

Multiple cross-site scripting XSS vulnerabilities in the web-authentication function on the Cisco NAC Appliance 4.9.2 and earlier allow remote attackers to inject arbitrary web script or HTML via the 1 cm or 2 uri parameters to a perfigoweblogin.jsp, or the 3 cm, 4 provider, 5 session, 6 uri, 7...

4.3CVSS6.1AI score0.00967EPSS
Exploits0References2Affected Software1
Cvelist
Cvelist
added 2013/01/31 11:0 a.m.22 views

CVE-2012-6029

Multiple cross-site scripting XSS vulnerabilities in the web-authentication function on the Cisco NAC Appliance 4.9.2 and earlier allow remote attackers to inject arbitrary web script or HTML via the 1 cm or 2 uri parameters to a perfigoweblogin.jsp, or the 3 cm, 4 provider, 5 session, 6 uri, 7...

5.8AI score0.00967EPSS
Exploits0References2
CVE
CVE
added 2013/01/31 11:0 a.m.50 views

CVE-2012-6029

CVE-2012-6029 affects Cisco NAC Appliance 4.9.2 and earlier. The vulnerability is a set of cross-site scripting flaws in the web-authentication flow, exploitable by an unauthenticated, remote attacker who persuades a user to follow a malicious URL. Specifically, XSS can be triggered via parameter...

4.3CVSS5.9AI score0.00967EPSS
Exploits0References2Affected Software1
Kaspersky
Kaspersky
added 2013/01/31 12:0 a.m.34 views

KLA10104 CI vulnerability in Cisco NAC Appliance

XSS vulnerabilities were found in the Cisco NAC Appliance. By exploiting this vulnerability malicious users can inject arbitrary web scripts. This vulnerability can be exploited from the network at a point related to web-auth. Original advisories Cisco bulletin Related products...

4.3CVSS6.4AI score0.00967EPSS
Exploits0References3
Prion
Prion
added 2008/04/16 5:5 p.m.16 views

Code injection

Cisco Network Admission Control NAC Appliance 3.5.x, 3.6.x before 3.6.4.4, 4.0.x before 4.0.6, and 4.1.x before 4.1.2 allows remote attackers to obtain the shared secret for the Clean Access Server CAS and Clean Access Manager CAM by sniffing error logs...

10CVSS6.9AI score0.02566EPSS
Exploits0References6Affected Software1
Rows per page
Query Builder