Cisco: >> Network Admission Control Manager And Server System Software >> 4.0.3.1 Security Vulnerabilities
SQL injection vulnerability in Cisco Network Admission Control (NAC) Manager before 4.8.3.1 and 4.9.x before 4.9.2 allows remote attackers to execute arbitrary SQL commands via unspecified vectors, aka Bug ID CSCub23095.
CVSS Score
7.5
EPSS Score
0.004
Published
2013-04-18
Cisco Clean Access (CCA) 3.6.x through 3.6.4.2 and 4.0.x through 4.0.3.2 does not properly configure or allow modification of a shared secret authentication key, which causes all devices to have the same shared sercet and allows remote attackers to gain unauthorized access.
CVSS Score
10.0
EPSS Score
0.03
Published
2007-01-04