Vulnerabilities > Cisco > Secure Access Control System > 5.8.0.8

DATE CVE VULNERABILITY TITLE RISK
2018-05-02 CVE-2018-0253 Improper Input Validation vulnerability in Cisco Secure Access Control System
A vulnerability in the ACS Report component of Cisco Secure Access Control System (ACS) could allow an unauthenticated, remote attacker to execute arbitrary commands on an affected system.
network
low complexity
cisco CWE-20
critical
 9.8
9.8
2017-08-07 CVE-2017-6769 Cross-site Scripting vulnerability in Cisco Secure Access Control System 5.8(0.8)/5.8(1.5)
A vulnerability in the web-based management interface of the Cisco Secure Access Control System (ACS) could allow an authenticated, remote attacker to conduct a stored cross-site scripting (XSS) attack against a user of the web interface of the affected system.
network
low complexity
cisco CWE-79
5.4
5.4