CyberSec.Space Logo
CVEブラウザに戻る

CVE-2013-1177

HIGH
7.5
CVSS Severity Score
EPSS Score0.0720%
EPSS Percentile27.71th
Published2013年4月18日
Last Modified2026年4月29日

Vulnerability Description

SQL injection vulnerability in Cisco Network Admission Control (NAC) Manager before 4.8.3.1 and 4.9.x before 4.9.2 allows remote attackers to execute arbitrary SQL commands via unspecified vectors, aka Bug ID CSCub23095.

Affected Platforms (CPE)

📦
Cisco

Network Admission Control Manager And Server System Software

<= 4.8.3
📦
Cisco

Network Admission Control Manager And Server System Software

= 4.8.0
📦
Cisco

Network Admission Control Manager And Server System Software

= 4.8.1
📦
Cisco

Network Admission Control Manager And Server System Software

= 4.8.2
📦
Cisco

Network Admission Control Manager And Server System Software

= 4.9.0
📦
Cisco

Network Admission Control Manager And Server System Software

= 4.9.1

References & Advisories

🔗 http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20130417-nac
🔗 http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20130417-nac

関連する脆弱性情報

CVE-2013-273410.0

Adobe Reader and Acrobat 9.x before 9.5.5, 10.x before 10.1.7, and 11.x before 11.0.03 allow attackers to execute arbitrary code o...

CVE-2013-332810.0

Adobe Flash Player before 10.3.183.86 and 11.x before 11.7.700.202 on Windows and Mac OS X, before 10.3.183.86 and 11.x before 11....

CVE-2013-233310.0

Unspecified vulnerability in HP Storage Data Protector 6.20, 6.21, 7.00, and 7.01 allows remote attackers to execute arbitrary cod...

CVE-2013-332910.0

Adobe Flash Player before 10.3.183.86 and 11.x before 11.7.700.202 on Windows and Mac OS X, before 10.3.183.86 and 11.x before 11....