Open Redirect Vulnerability in Cisco Secure Access Control System
CVE-2014-8029

Currently unrated

Key Information:

Vendor: Cisco
Status: Secure Access Control System
Vendor: CVE Published:; 9 January 2015

Summary

An open redirect vulnerability exists in the web interface of Cisco Secure Access Control System, potentially allowing remote attackers to redirect users to arbitrary websites. This exploitation can facilitate phishing attacks by utilizing unspecified parameters, posing significant risks to user security. Organizations using this product should take immediate steps to mitigate the threat.

References

http://www.securityfocus.com/bid/71948

vdb-entryx_refsource_BID

https://exchange.xforce.ibmcloud.com/vulnerabilities/100548

vdb-entryx_refsource_XF

http://tools.cisco.com/security/center/content/CiscoSecur...

vendor-advisoryx_refsource_CISCO

Timeline

Vulnerability published
Jan 9, 2015
Vulnerability Reserved
Oct 8, 2014