Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
A vulnerability in the web-based management interface of the Cisco Secure Access Control System (ACS) could allow an authenticated, remote attacker to conduct a stored cross-site scripting (XSS) attack against a user of the web interface of the affected system. More Information: CSCve70587. Known Affected Releases: 5.8(0.8) 5.8(1.5).
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Cisco Secure Access Control System 跨站脚本漏洞
Vulnerability Description
Cisco Secure Access Control System(ACS)是美国思科(Cisco)公司的一套安全访问控制系统。该系统可通过RADIUS、TACACS协议分别对网络访问和网络设备访问进行控制。 Cisco Secure ACS中的基于Web的管理界面存在跨站脚本漏洞,该漏洞源于程序没有充分的验证用户提交的输入,并且没有对用户提交的输入进行加密。远程攻击者可通过诱使用户点击恶意的链接利用该漏洞在受影响上下文中执行任意脚本或HTML。
CVSS Information
N/A
Vulnerability Type
N/A