CVE-2015-0768

Currently unrated

Key Information:

Vendor: Cisco
Status: Prime Network Control System
Vendor: CVE Published:; 12 June 2015

Summary

The Device Work Center (DWC) component in Cisco Prime Network Control System (NCS) 2.1(0.0.85), 2.2(0.0.58), and 2.2(0.0.69) does not properly implement AAA roles, which allows remote authenticated users to bypass intended access restrictions and execute commands via a login session, aka Bug ID CSCur27371.

References

http://tools.cisco.com/security/center/viewAlert.x?alertI...

vendor-advisoryx_refsource_CISCO

http://www.securitytracker.com/id/1032541

vdb-entryx_refsource_SECTRACK

Timeline

Vulnerability published
Jun 12, 2015
Vulnerability Reserved
Jan 7, 2015