Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
cvelistMitreCVELIST:CVE-2004-1099
HistoryDec 01, 2004 - 5:00 a.m.

CVE-2004-1099

2004-12-0105:00:00
mitre
www.cve.org
3

AI Score

7.1

Confidence

Low

EPSS

0.023

Percentile

89.8%

JSON

Cisco Secure Access Control Server for Windows (ACS Windows) and Cisco Secure Access Control Server Solution Engine (ACS Solution Engine) 3.3.1, when the EAP-TLS protocol is enabled, does not properly handle expired or untrusted certificates, which allows remote attackers to bypass authentication and gain unauthorized access via a “cryptographically correct” certificate with valid fields such as the username.

Related

checkpoint_advisories 1
cisco 1
nvd 1
cve 1
checkpoint_advisories
checkpoint_advisories
Cisco Secure ACS EAPTLS Authentication Bypass - Ver2 (CVE-2004-1099)
2015-05-18 00:00:00
cisco
cisco
Vulnerability in Cisco Secure Access Control Server EAP-TLS Authentication
2004-11-02 15:00:00
nvd
nvd
CVE-2004-1099
2005-01-10 05:00:00
cve
cve
CVE-2004-1099
2005-01-10 05:00:00

AI Score

7.1

Confidence

Low

EPSS

0.023

Percentile

89.8%

JSON
Related for CVELIST:CVE-2004-1099
checkpoint_advisories1cisco1nvd1cve1