Access Control Server Vulnerabilities in Cisco Products

CVE-2013-3380

Summary

The administrative web interface of Cisco's Secure Access Control System (ACS) is vulnerable due to insufficient restrictions on the report view page. This flaw allows remote authenticated users to exploit the interface, potentially leading to the disclosure of sensitive information through unauthorized direct requests. As a result, proper access control measures are crucial to safeguard information and mitigate risks associated with this vulnerability.

References