Technologyglobal✓ verified · 95%

Cisco Secure Access Control System Java Deserialization Vulnerability

Name: Cisco Secure Access Control System Java Deserialization Vulnerability
Start: 2022-03-25
Location: Global (internet)

When: 2022-03-25 00:00 UTC · day precision
Where: Global (internet)
Category: cyber_exploit

A vulnerability in Java deserialization used by Cisco Secure Access Control System (ACS) could allow an unauthenticated, remote attacker to execute arbitrary commands on an affected device. The vulnerability is due to insecure deserialization of user-supplied content by the affected software.

Sources

CISA ↗ · first seen 2022-03-25 00:00 UTC

Defaxon links out to the original reporting and never republishes article text.

Correlated events

Computed by the Defaxon correlation engine — linked by shared actors, co-location, and temporal proximity. Scored hypotheses, never causal claims.

No correlated events found in the current window. As more events arrive, connections form automatically.

← Back to the live map