Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
secure access control system vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2013-3421
Cross-site scripting (XSS) vulnerability in the Help index page in Cisco Secure Access Control System (ACS) allows remote malicious users to inject arbitrary web script or HTML via an unspecified parameter, aka Bug ID CSCud75170.
Cisco Secure Access Control System -
NA
CVE-2013-3422
Cross-site scripting (XSS) vulnerability in Administration pages in Cisco Secure Access Control System (ACS) allows remote malicious users to inject arbitrary web script or HTML via an unspecified parameter, aka Bug ID CSCud75165.
Cisco Secure Access Control System -
NA
CVE-2013-3423
Cross-site scripting (XSS) vulnerability in the web interface in Cisco Secure Access Control System (ACS) allows remote malicious users to inject arbitrary web script or HTML via an unspecified field, aka Bug ID CSCud75174.
Cisco Secure Access Control System -
NA
CVE-2013-3424
Cross-site request forgery (CSRF) vulnerability in Administration and View pages in Cisco Secure Access Control System (ACS) allows remote malicious users to hijack the authentication of arbitrary users, aka Bug ID CSCud75177.
Cisco Secure Access Control System -
NA
CVE-2013-3428
The web interface in Cisco Secure Access Control System (ACS) does not properly suppress error-condition details, which allows remote authenticated users to obtain sensitive information via an unspecified request that triggers an error, aka Bug ID CSCue65957.
Cisco Secure Access Control System -
NA
CVE-2013-5470
Cisco Secure Access Control System (ACS) does not properly handle requests to read from the TACACS+ socket, which allows remote malicious users to cause a denial of service (process crash) via malformed TCP packets, aka Bug ID CSCuh12488.
Cisco Secure Access Control System -
NA
CVE-2014-2130
Cisco Secure Access Control Server (ACS) provides an unintentional administration web interface based on Apache Tomcat, which allows remote authenticated users to modify application files and configuration files, and consequently execute arbitrary code, by leveraging administrati...
Cisco Secure Access Control System -
NA
CVE-2013-1200
Session fixation vulnerability in Cisco Secure Access Control System (ACS) allows remote malicious users to hijack web sessions via unspecified vectors, aka Bug ID CSCud95787.
Cisco Secure Access Control System -
NA
CVE-2015-0580
Multiple SQL injection vulnerabilities in the ACS View reporting interface pages in Cisco Secure Access Control System (ACS) prior to 5.5 patch 7 allow remote authenticated administrators to execute arbitrary SQL commands via crafted HTTPS requests, aka Bug ID CSCuq79027.
Cisco Secure Access Control System
NA
CVE-2006-4098
Stack-based buffer overflow in the CSRadius service in Cisco Secure Access Control Server (ACS) for Windows prior to 4.1 and ACS Solution Engine prior to 4.1 allows remote malicious users to execute arbitrary code via a crafted RADIUS Accounting-Request packet.
Cisco Secure Access Control Server 3.0
Cisco Secure Access Control Server 3.1
Cisco Secure Access Control Server 3.2.2
Cisco Secure Access Control Server 3.3
Cisco Secure Access Control Server 3.2\\(1.20\\)
Cisco Secure Access Control Server 3.2\\(2\\)
Cisco Secure Access Control Server 4.0
Cisco Secure Access Control Server 4.0.1
Cisco Secure Access Control Server 3.2\\(3\\)
Cisco Secure Access Control Server 3.2.1
Cisco Secure Access Control Server 3.2
Cisco Secure Access Control Server 3.2\\(1\\)
Cisco Secure Access Control Server 3.3\\(1\\)
Cisco Secure Access Control Server 3.3.1
Cisco Secure Access Control Server 3.3.2
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
camera
bypass
CVE-2024-3592
CVE-2024-37383
CVE-2024-24919
CVE-2024-27822
CVE-2024-36788
CVE-2024-36789
man-in-the-middle
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
4
5
6
NEXT »