Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2014-8028

Overview

Vulnerability Score 4.3 4.3
CVE Id CVE-2014-8028
Last Modified 10 Feb 2015 09:59:33
Published 08 Jan 2015 09:59:04
Confidentiality Impact NONE NONE
Integrity Impact PARTIAL PARTIAL
Availability Impact NONE NONE
Access Vector NETWORK
Access Complexity MEDIUM
Authentication NONE

CVE-2014-8028

Summary

Multiple cross-site scripting (XSS) vulnerabilities in the web framework in Cisco Secure Access Control System (ACS) allow remote attackers to inject arbitrary web script or HTML via unspecified parameters, aka Bug ID CSCuq79019.

Vulnerable Systems

Application

  • Cisco Secure Access Control System -


References

CISCO - 20150108 Cisco Secure Access Control Server Multiple Cross-Site Scripting Vulnerabilities

XF - cisco-secureacs-cve20148028-xss(100553)


Last Updated: 27 May 2016 10:42:38