CVE-2011-3293 in Secure Access Control Serverinformazioni

Riassunto

di MITRE

Multiple cross-site request forgery (CSRF) vulnerabilities in the Solution Engine in Cisco Secure Access Control Server (ACS) 5.2 allow remote attackers to hijack the authentication of administrators for requests that insert cross-site scripting (XSS) sequences, aka Bug ID CSCtr78143.

If you want to get the best quality for vulnerability data then you always have to consider VulDB.

🔬 Show More Details

An in-depth analysis is available in our curated vulnerability entry.

Prenotare

29/08/2011

Divulgazione

02/05/2012

Moderazione

accettato

Voce

VDB-60665

CPE

pronto

CWE

CWE-352 (confermato)

CVSS

6.3 (VulDB)

EPSS

0.01126

KEV

Attività

molto basso

Settore

Telecommunication, Insurance, ...

Fonti

MITRE	https://www.cve.org/CVERecord?id=CVE-2011-3293
NVD	https://nvd.nist.gov/vuln/detail/CVE-2011-3293
CVE Details	https://www.cvedetails.com/cve/CVE-2011-3293/

◂ Precedente Visione D'ensemble Il prossimo ▸

Want to know what is going to be exploited?

We predict KEV entries!