Vulnerabilities > Cisco > Secure Access Control Server Solution Engine

DATE CVE VULNERABILITY TITLE RISK
2018-10-05 CVE-2018-0414 XXE vulnerability in Cisco Secure Access Control Server Solution Engine
A vulnerability in the web-based UI of Cisco Secure Access Control Server could allow an authenticated, remote attacker to gain read access to certain information in an affected system.
network
low complexity
cisco CWE-611
5.7
5.7
2018-03-08 CVE-2018-0218 XXE vulnerability in Cisco Secure Access Control Server Solution Engine 5.8(0.8)
A vulnerability in the web-based user interface of the Cisco Secure Access Control Server prior to 5.8 patch 9 could allow an unauthenticated, remote attacker to gain read access to certain information in the affected system.
local
low complexity
cisco CWE-611
3.3
3.3
2018-03-08 CVE-2018-0207 XXE vulnerability in Cisco Secure Access Control Server Solution Engine 5.8(0.8)
A vulnerability in the web-based user interface of the Cisco Secure Access Control Server prior to 5.8 patch 9 could allow an unauthenticated, remote attacker to gain read access to certain information in the affected system.
local
low complexity
cisco CWE-611
3.3
3.3