Local Privilege Escalation Flaw in Cisco Secure Access Control System and Products
CVE-2013-1196

Currently unrated

Key Information:

Vendor: Cisco
Status: Prime Network Control System; Secure Access Control System; Prime Collaboration; Prime Data Center Network Manager
Vendor: CVE Published:; 29 April 2013

Summary

The command-line interface of various Cisco products, including Cisco Secure Access Control System and Identity Services Engine, lacks proper input validation. This vulnerability may enable local users to achieve root privileges through unspecified vectors, thus potentially compromising system integrity. This issue impacts several Cisco platforms and highlights the critical need for robust security mechanisms to validate user input effectively.

References

http://tools.cisco.com/security/center/content/CiscoSecur...

vendor-advisoryx_refsource_CISCO

Timeline

Vulnerability Reserved
Oct 3, 2022
Vulnerability published
Apr 29, 2013