An XML External Entity vulnerability in the web-based user interface of the Cisco Secure Access Control System (ACS) could allow an unauthenticated, remote attacker to have read access to part of the information stored in the affected system. More Information: CSCvc04845. Known Affected Releases: 5.8(2.5).
References
Configurations
History
No history.
Information
Published : 2017-02-22 02:59
Updated : 2024-02-04 19:11
NVD link : CVE-2017-3839
Mitre link : CVE-2017-3839
CVE.ORG link : CVE-2017-3839
JSON object : View
Products Affected
cisco
- secure_access_control_system
CWE
CWE-611
Improper Restriction of XML External Entity Reference