CyberSec.Space Logo
CVEブラウザに戻る

CVE-2011-3305

HIGH
7.8
CVSS Severity Score
EPSS Score0.1250%
EPSS Percentile28.91th
Published2011年10月6日
Last Modified2026年4月29日

Vulnerability Description

Directory traversal vulnerability in Cisco Network Admission Control (NAC) Manager 4.8.x allows remote attackers to read arbitrary files via crafted traffic to TCP port 443, aka Bug ID CSCtq10755.

Affected Platforms (CPE)

📦
Cisco

Nac Manager

= 4.8
📦
Cisco

Nac Manager

= 4.8\(1\)
📦
Cisco

Nac Manager

= 4.8\(2\)

References & Advisories

🔗 http://osvdb.org/76080
🔗 http://secunia.com/advisories/46309
🔗 http://www.cisco.com/warp/public/707/cisco-sa-20111005-nac.shtml
🔗 http://www.securityfocus.com/bid/49954
🔗 http://www.securitytracker.com/id?1026142
🔗 https://exchange.xforce.ibmcloud.com/vulnerabilities/70335
🔗 http://osvdb.org/76080
🔗 http://secunia.com/advisories/46309

関連する脆弱性情報

CVE-2008-115510.0

Cisco Network Admission Control (NAC) Appliance 3.5.x, 3.6.x before 3.6.4.4, 4.0.x before 4.0.6, and 4.1.x before 4.1.2 allows rem...

CVE-2013-11777.5

SQL injection vulnerability in Cisco Network Admission Control (NAC) Manager before 4.8.3.1 and 4.9.x before 4.9.2 allows remote a...

CVE-2011-262810.0

Opera before 11.11 does not properly implement FRAMESET elements, which allows remote attackers to execute arbitrary code or cause...

CVE-2011-007710.0

Unspecified vulnerability in the browser engine in Mozilla Firefox 3.5.x before 3.5.19 and 3.6.x before 3.6.17, Thunderbird before...