Cisco Access Control Server Vulnerabilidad

Cronología

Versión

5.7(0.15)	6
5.2	4
5.5	4
2.4.0	3
2.4.1	3

Contramedidas

Official Fix	20
Temporary Fix	0
Workaround	2
Unavailable	0
Not Defined	10

Explotabilidad

High	2
Functional	0
Proof-of-Concept	5
Unproven	9
Not Defined	16

Vector de acceso

Not Defined	0
Physical	0
Local	0
Adjacent	0
Network	32

Autenticación

Not Defined	0
High	0
Low	7
None	25

La interacción del usuario

Not Defined	0
Required	10
None	22

C3BM Index

CVSSv3 Base

≤1	0
≤2	0
≤3	0
≤4	0
≤5	11
≤6	9
≤7	4
≤8	6
≤9	0
≤10	2

CVSSv3 Temp

≤1	0
≤2	0
≤3	0
≤4	3
≤5	13
≤6	6
≤7	5
≤8	3
≤9	1
≤10	1

VulDB

≤1	0
≤2	0
≤3	0
≤4	0
≤5	11
≤6	7
≤7	4
≤8	8
≤9	0
≤10	2

NVD

≤1	0
≤2	0
≤3	0
≤4	2
≤5	0
≤6	1
≤7	0
≤8	0
≤9	0
≤10	0

CNA

≤1	0
≤2	0
≤3	0
≤4	0
≤5	0
≤6	0
≤7	0
≤8	0
≤9	0
≤10	0

Proveedor

≤1	0
≤2	0
≤3	0
≤4	0
≤5	0
≤6	0
≤7	0
≤8	0
≤9	0
≤10	0

Research

≤1	0
≤2	0
≤3	0
≤4	0
≤5	0
≤6	0
≤7	0
≤8	0
≤9	0
≤10	0

Explotar día 0

<1k	0
<2k	0
<5k	0
<10k	11
<25k	12
<50k	9
<100k	0
≥100k	0

Explotar hoy

<1k	27
<2k	1
<5k	2
<10k	2
<25k	0
<50k	0
<100k	0
≥100k	0

Explotar el volumen del mercado

🔴 CTI Ocupaciones

Affected Versions (20): 2.3, 2.4, 2.4.1, 2.4.2, 3.0, 3.01, 3.2, 3.2(3), 4.0, 5.0, 5.1, 5.2, 5.3, 5.4, 5.5, 5.5(0.1), 5.5(0.46.2), 5.6, 5.7(0.15), 5.8 Patch 8

Link to Product Website: https://www.cisco.com/

Tipo de software: Network Management Software

Fecha de publicación	Base	Temp	Vulnerabilidad	0day	Hoy	Exp	Con	CTI	CVE
2018-10-05	5.0	4.9	Cisco Secure Access Control Server Web UI XML External Entity	$5k-$25k	$0-$5k	Not Defined	Official Fix	0.00	CVE-2018-0414
2018-03-08	5.3	5.2	Cisco Secure Access Control Server Web-based User Interface divulgación de información	$5k-$25k	$0-$5k	Not Defined	Official Fix	0.03	CVE-2018-0218
2018-03-08	5.3	5.2	Cisco Secure Access Control Server divulgación de información	$5k-$25k	$0-$5k	Not Defined	Official Fix	0.03	CVE-2018-0207
2015-10-30	6.3	6.3	Cisco Secure Access Control Server Solution Engine sql injection	$5k-$25k	$5k-$25k	Not Defined	Not Defined	0.02	CVE-2015-6345
2015-10-26	4.3	3.8	Cisco Secure Access Control Server RBAC escalada de privilegios	$5k-$25k	$0-$5k	Unproven	Official Fix	0.00	CVE-2015-6348
2015-10-26	4.3	3.8	Cisco Secure Access Control Server RBAC escalada de privilegios	$5k-$25k	$0-$5k	Unproven	Official Fix	0.00	CVE-2015-6347
2015-10-26	5.4	4.7	Cisco Secure Access Control Server Web Interface cross site scripting	$5k-$25k	$0-$5k	Unproven	Official Fix	0.02	CVE-2015-6349
2015-10-26	5.4	4.7	Cisco Secure Access Control Server Web Interface cross site scripting	$5k-$25k	$0-$5k	Unproven	Official Fix	0.00	CVE-2015-6346
2015-09-20	4.3	4.3	Cisco Secure Access Control Server Solution Engine escalada de privilegios	$5k-$25k	$5k-$25k	Not Defined	Not Defined	0.02	CVE-2015-6300
2015-05-22	5.3	4.6	Cisco Access Control Server REST API escalada de privilegios	$5k-$25k	$0-$5k	Unproven	Official Fix	0.00	CVE-2015-0746

22 no se muestran más entradas

🔒 Login Required

You need to signup and login to see more of the remaining 22 results.

más entradas por Cisco

◂ AnteriorVisión De ConjuntoPróximo ▸

Do you want to use VulDB in your project?

Use the official API to access entries easily!