Context Directory Agent Security Vulnerabilities and Issues — Context Directory Agent CVE List

Lucene search

CiscoContext Directory Agent

4 matches found

CVE•added 2014/01/08 9:55 p.m.•36 views

CVE-2014-0651

The administrative interface in Cisco Context Directory Agent (CDA) does not properly enforce authorization requirements, which allows remote authenticated users to obtain administrative access by hijacking a session, aka Bug ID CSCuj45347.

4.9CVSS6.3AI score0.00425EPSS

CVE•added 2014/01/08 9:55 p.m.•33 views

CVE-2014-0652

Cross-site scripting (XSS) vulnerability in the Mappings page in Cisco Context Directory Agent (CDA) allows remote attackers to inject arbitrary web script or HTML via a crafted URL, aka Bug ID CSCuj45358.

4.3CVSS5.8AI score0.00543EPSS

CVE•added 2014/01/08 9:55 p.m.•32 views

CVE-2014-0654

Cisco Context Directory Agent (CDA) allows remote attackers to modify the cache via a replay attack involving crafted RADIUS accounting messages, aka Bug ID CSCuj45383.

4.3CVSS6.8AI score0.00769EPSS

CVE•added 2014/01/08 9:55 p.m.•30 views

CVE-2014-0656

Cisco Context Directory Agent (CDA) allows remote authenticated users to trigger the omission of certain user-interface data via crafted field values, aka Bug ID CSCuj45353.

4CVSS6.4AI score0.00377EPSS