Skip to main content

Application Control Engine Software

2 CVEs product

Monthly

CVE-2016-1297 HIGH This Week

The Device Manager GUI in Cisco Application Control Engine (ACE) 4710 A5 before A5(3.1) allows remote authenticated users to bypass intended RBAC restrictions and execute arbitrary CLI commands with. Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Command Injection Cisco Application Control Engine Software
NVD
CVSS 3.0
8.8
EPSS
0.6%
CVE-2012-3063 HIGH This Week

Cisco Application Control Engine (ACE) before A4(2.3) and A5 before A5(1.1), when multicontext mode is enabled, does not properly share a management IP address among multiple contexts, which allows. Rated high severity (CVSS 7.1), this vulnerability is remotely exploitable. No vendor patch available.

Race Condition Authentication Bypass Cisco Application Control Engine Software
NVD
CVSS 2.0
7.1
EPSS
0.1%
EPSS 1% CVSS 8.8
HIGH This Week

The Device Manager GUI in Cisco Application Control Engine (ACE) 4710 A5 before A5(3.1) allows remote authenticated users to bypass intended RBAC restrictions and execute arbitrary CLI commands with. Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Command Injection Cisco Application Control Engine Software
NVD
EPSS 0% CVSS 7.1
HIGH This Week

Cisco Application Control Engine (ACE) before A4(2.3) and A5 before A5(1.1), when multicontext mode is enabled, does not properly share a management IP address among multiple contexts, which allows. Rated high severity (CVSS 7.1), this vulnerability is remotely exploitable. No vendor patch available.

Race Condition Authentication Bypass Cisco +1
NVD

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy