CVE-2013-3380

Currently unrated

Key Information:

Vendor: Cisco
Status: Secure Access Control Server Solution Engine
Vendor: CVE Published:; 12 June 2013

Summary

The administrative web interface in the Access Control Server in Cisco Secure Access Control System (ACS) does not properly restrict the report view page, which allows remote authenticated users to obtain sensitive information via a direct request, aka Bug ID CSCue79279.

References

http://tools.cisco.com/security/center/content/CiscoSecur...

vendor-advisoryx_refsource_CISCO

Timeline

Vulnerability Reserved
Oct 3, 2022
Vulnerability published
Jun 12, 2013