Remote Information Disclosure Vulnerability in Cisco Secure Access Control System
CVE-2017-3841

7.5HIGH

Key Information:

Vendor
Cisco
Status
Cisco Secure Access Control System
Vendor
CVE Published:
22 February 2017

Summary

A vulnerability affecting the web interface of the Cisco Secure Access Control System allows unauthenticated, remote attackers to access sensitive information. This could lead to unauthorized exposure of confidential data, highlighting the importance of keeping software up-to-date and implementing security best practices.

Affected Version(s)

Cisco Secure Access Control System Cisco Secure Access Control System

References

http://www.securityfocus.com/bid/96237
vdb-entryx_refsource_BID
http://www.securitytracker.com/id/1037838
vdb-entryx_refsource_SECTRACK
https://tools.cisco.com/security/center/content/CiscoSecu...
x_refsource_CONFIRM

CVSS V3.1

Score:
7.5
Severity:
HIGH
Confidentiality:
High
Integrity:
None
Availability:
High
Attack Vector:
Network
Attack Complexity:
Low
Privileges Required:
None
User Interaction:
None
Scope:
Unchanged

Timeline

  • Vulnerability published

  • Vulnerability Reserved

.