CVE-2014-8028

Currently unrated

Key Information:

Vendor: Cisco
Status: Secure Access Control System
Vendor: CVE Published:; 9 January 2015

Summary

Multiple cross-site scripting (XSS) vulnerabilities in the web framework in Cisco Secure Access Control System (ACS) allow remote attackers to inject arbitrary web script or HTML via unspecified parameters, aka Bug ID CSCuq79019.

References

http://www.securityfocus.com/bid/71946

vdb-entryx_refsource_BID

https://exchange.xforce.ibmcloud.com/vulnerabilities/100553

vdb-entryx_refsource_XF

http://tools.cisco.com/security/center/content/CiscoSecur...

vendor-advisoryx_refsource_CISCO

Timeline

Vulnerability published
Jan 9, 2015
Vulnerability Reserved
Oct 8, 2014