CVE-2014-0648

Currently unrated

Key Information:

Vendor: Cisco
Status: Secure Access Control System
Vendor: CVE Published:; 16 January 2014

Summary

The RMI interface in Cisco Secure Access Control System (ACS) 5.x before 5.5 does not properly enforce authentication and authorization requirements, which allows remote attackers to obtain administrative access via a request to this interface, aka Bug ID CSCud75187.

References

http://www.securityfocus.com/bid/64962

vdb-entryx_refsource_BID

http://secunia.com/advisories/56213

third-party-advisoryx_refsource_SECUNIA

https://exchange.xforce.ibmcloud.com/vulnerabilities/90431

vdb-entryx_refsource_XF

Timeline

Vulnerability published
Jan 16, 2014
Vulnerability Reserved
Jan 2, 2014