CyberSec.Space Logo
返回 CVE 浏览器

CVE-2011-3305

HIGH
7.8
CVSS Severity Score
EPSS Score0.1250%
EPSS Percentile28.91th
Published2011年10月6日
Last Modified2026年4月29日

Vulnerability Description

Directory traversal vulnerability in Cisco Network Admission Control (NAC) Manager 4.8.x allows remote attackers to read arbitrary files via crafted traffic to TCP port 443, aka Bug ID CSCtq10755.

Affected Platforms (CPE)

📦
Cisco

Nac Manager

= 4.8
📦
Cisco

Nac Manager

= 4.8\(1\)
📦
Cisco

Nac Manager

= 4.8\(2\)

References & Advisories

🔗 http://osvdb.org/76080
🔗 http://secunia.com/advisories/46309
🔗 http://www.cisco.com/warp/public/707/cisco-sa-20111005-nac.shtml
🔗 http://www.securityfocus.com/bid/49954
🔗 http://www.securitytracker.com/id?1026142
🔗 https://exchange.xforce.ibmcloud.com/vulnerabilities/70335
🔗 http://osvdb.org/76080
🔗 http://secunia.com/advisories/46309

相关漏洞威胁

CVE-2008-115510.0

Cisco Network Admission Control (NAC) Appliance 3.5.x, 3.6.x before 3.6.4.4, 4.0.x before 4.0.6, and 4.1.x before 4.1.2 allows rem...

CVE-2013-11777.5

SQL injection vulnerability in Cisco Network Admission Control (NAC) Manager before 4.8.3.1 and 4.9.x before 4.9.2 allows remote a...

CVE-2011-073210.0

Multiple unspecified vulnerabilities in IBM Tivoli Integrated Portal (TIP) 1.1.1.1, as used in IBM Tivoli Common Reporting (TCR) 1...

CVE-2011-027610.0

HP OpenView Performance Insight Server 5.2, 5.3, 5.31, 5.4, and 5.41 contains a "hidden account" in the com.trinagy.security.XMLUs...