Secure Access Control Server Security Vulnerabilities and Issues — Secure Access Control Server CVE List

Lucene search

CiscoSecure Access Control Server

2 matches found

CVE•added 2012/05/02 10:9 a.m.•34 views

CVE-2011-3293

Multiple cross-site request forgery (CSRF) vulnerabilities in the Solution Engine in Cisco Secure Access Control Server (ACS) 5.2 allow remote attackers to hijack the authentication of administrators for requests that insert cross-site scripting (XSS) sequences, aka Bug ID CSCtr78143.

6.8CVSS6.6AI score0.00126EPSS

CVE•added 2012/05/02 10:9 a.m.•34 views

CVE-2011-3317

Multiple cross-site scripting (XSS) vulnerabilities in the Solution Engine in Cisco Secure Access Control Server (ACS) 5.2 allow remote attackers to inject arbitrary web script or HTML via unspecified vectors, aka Bug ID CSCtr78192.

4.3CVSS5.8AI score0.00254EPSS