CVE-2014-8029

Open redirect vulnerability in the web interface in Cisco Secure Access Control System (ACS) allows remote attackers to redirect users to arbitrary web sites and conduct phishing attacks via an unspecified parameter, aka Bug ID CSCuq74150.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTNIST
5.8 UNKNOWN
NETWORK
MEDIUM
AV:N/AC:M/Au:N/C:P/I:P/A:N
ciscoCNA
---
---
CVEADP
---
---
Base Score
CVSS 3.x
EPSS Score
Percentile: 55%
VendorProductVersion
ciscosecure_access_control_system
-
𝑥
= Vulnerable software versions
References
http://secunia.com/advisories/62159
http://tools.cisco.com/security/center/content/CiscoSecurityNotice/CVE-2014-8029
http://www.securityfocus.com/bid/71948
http://www.securitytracker.com/id/1031514
https://exchange.xforce.ibmcloud.com/vulnerabilities/100548
http://secunia.com/advisories/62159
http://tools.cisco.com/security/center/content/CiscoSecurityNotice/CVE-2014-8029
http://www.securityfocus.com/bid/71948
http://www.securitytracker.com/id/1031514
https://exchange.xforce.ibmcloud.com/vulnerabilities/100548