Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2014-8028


Vulnerability Score 4.3 4.3
CVE Id CVE-2014-8028
Last Modified 10 Feb 2015 09:59:33
Published 08 Jan 2015 09:59:04
Confidentiality Impact NONE NONE
Integrity Impact PARTIAL PARTIAL
Availability Impact NONE NONE
Access Vector NETWORK
Access Complexity MEDIUM
Authentication NONE



Multiple cross-site scripting (XSS) vulnerabilities in the web framework in Cisco Secure Access Control System (ACS) allow remote attackers to inject arbitrary web script or HTML via unspecified parameters, aka Bug ID CSCuq79019.

Vulnerable Systems


  • Cisco Secure Access Control System -


CISCO - 20150108 Cisco Secure Access Control Server Multiple Cross-Site Scripting Vulnerabilities

XF - cisco-secureacs-cve20148028-xss(100553)

Last Updated: 27 May 2016 10:42:38