CVE-2014-0668

Currently unrated

Key Information:

Vendor: Cisco
Status: Secure Access Control System
Vendor: CVE Published:; 20 January 2014

Summary

Cross-site scripting (XSS) vulnerability in the portal in Cisco Secure Access Control System (ACS) allows remote attackers to inject arbitrary web script or HTML via an unspecified parameter, aka Bug ID CSCue65949.

References

https://exchange.xforce.ibmcloud.com/vulnerabilities/90561

vdb-entryx_refsource_XF

http://tools.cisco.com/security/center/content/CiscoSecur...

vendor-advisoryx_refsource_CISCO

http://secunia.com/advisories/56543

third-party-advisoryx_refsource_SECUNIA

Timeline

Vulnerability published
Jan 20, 2014
Vulnerability Reserved
Jan 2, 2014