CVE-2017-3838

A vulnerability in Cisco Secure Access Control System (ACS) could allow an unauthenticated, remote attacker to conduct a DOM-based cross-site scripting (XSS) attack against the user of the web interface of the affected system. More Information: CSCvc04838. Known Affected Releases: 5.8(2.5).

Severity	MEDIUM
CVSS	6.1
CWE	CWE-79
KEV
Published	9 years ago
Modified	6 days ago

Related Products

Product	Advisory	Evidence
Cisco Secure Access Control System (ACS)	cisco-sa-20170215-acs	Cisco OpenVuln