Arbitrary Web Script Injection Vulnerability in Cisco Secure Access Control Server Solution Engine (ACSE) 5.5(0.1)

Arbitrary Web Script Injection Vulnerability in Cisco Secure Access Control Server Solution Engine (ACSE) 5.5(0.1)

CVE-2015-0729 · MEDIUM Severity

AV:N/AC:M/AU:N/C:N/I:P/A:N

Cross-site scripting (XSS) vulnerability in Cisco Secure Access Control Server Solution Engine (ACSE) 5.5(0.1) allows remote attackers to inject arbitrary web script or HTML via a file-inclusion attack, aka Bug ID CSCuu11005.

Learn more about our Cis Benchmark Audit For Cisco.