CVE-2014-8029

Sažetak

Open redirect vulnerability in the web interface in Cisco Secure Access Control System (ACS) allows remote attackers to redirect users to arbitrary web sites and conduct phishing attacks via an unspecified parameter, aka Bug ID CSCuq74150.

Reference

http://secunia.com/advisories/62159
http://tools.cisco.com/security/center/content/CiscoSecurityNotice/CVE-2014-8029
http://www.securityfocus.com/bid/71948
http://www.securitytracker.com/id/1031514
https://exchange.xforce.ibmcloud.com/vulnerabilities/100548

CVSS

Base:	5.8
Impact:	4.9
Exploitability:	8.6

Pristup

Vektor	Složenost	Autentikacija
NETWORK	MEDIUM	NONE

Impact

Povjerljivost	Cjelovitost	Dostupnost
PARTIAL	PARTIAL	NONE

CVSS vektor

AV:N/AC:M/Au:N/C:P/I:P/A:N

Zadnje važnije ažuriranje

08-09-2017 - 01:29

Objavljeno

09-01-2015 - 02:59