Secure Access Control System@- Security Vulnerabilities and Issues — Secure Access Control System@- CVE List

Lucene search

CiscoSecure Access Control System-

4 matches found

CVE•added 2013/09/04 3:24 a.m.•39 views

CVE-2013-5470

Cisco Secure Access Control System (ACS) does not properly handle requests to read from the TACACS+ socket, which allows remote attackers to cause a denial of service (process crash) via malformed TCP packets, aka Bug ID CSCuh12488.

5CVSS6.8AI score0.00687EPSS

CVE•added 2013/10/24 10:53 a.m.•37 views

CVE-2013-5536

Cisco Secure Access Control System (ACS) does not properly implement an incoming-packet firewall rule, which allows remote attackers to cause a denial of service (process crash) via a flood of crafted packets, aka Bug ID CSCui51521.

5CVSS6.8AI score0.00438EPSS

CVE•added 2015/01/09 2:59 a.m.•37 views

CVE-2014-8029

Open redirect vulnerability in the web interface in Cisco Secure Access Control System (ACS) allows remote attackers to redirect users to arbitrary web sites and conduct phishing attacks via an unspecified parameter, aka Bug ID CSCuq74150.

5.8CVSS6.9AI score0.00329EPSS

CVE•added 2014/01/25 10:55 p.m.•35 views

CVE-2014-0678

The portal interface in Cisco Secure Access Control System (ACS) does not properly manage sessions, which allows remote authenticated users to hijack sessions and gain privileges via unspecified vectors, aka Bug ID CSCue65951.

5.5CVSS6.6AI score0.00381EPSS