Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
A vulnerability in the web interface of the Cisco Secure Access Control System (ACS) could allow an unauthenticated, remote attacker to redirect a user to a malicious web page, aka an Open Redirect Vulnerability. More Information: CSCvc04849. Known Affected Releases: 5.8(2.5).
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Cisco Secure Access Control System 输入验证漏洞
Vulnerability Description
Cisco Secure Access Control System(ACS)是美国思科(Cisco)公司的一套安全访问控制系统。该系统可通过RADIUS、TACACS协议分别对网络访问和网络设备访问进行控制。 Cisco Secure ACS中的Web界面存在开放重定向漏洞,该漏洞源于程序没有正确的对HTTP请求中的参数执行输入验证。远程攻击者可通过发送特制的HTTP请求利用该漏洞将用户重定向到恶意的Web页面。
CVSS Information
N/A
Vulnerability Type
N/A