7.5 High
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
7.2 High
AI Score
Confidence
Low
0.241 Low
EPSS
Percentile
96.6%
Cisco Security Agent Management Center (CSAMC) 5.1 before 5.1.0.79 does not properly handle certain LDAP error messages, which allows remote attackers to bypass authentication requirements via an empty password when using an external LDAP server.
CPE | Name | Operator | Version |
---|---|---|---|
cisco:security_agent_management_center | cisco security agent management center | eq | 5.1 |
secunia.com/advisories/22684
securitytracker.com/id?1017148
www.cisco.com/en/US/products/products_security_advisory09186a00807726f7.shtml
www.kb.cert.org/vuls/id/778648
www.osvdb.org/30169
www.securityfocus.com/bid/20852
www.vupen.com/english/advisories/2006/4308
exchange.xforce.ibmcloud.com/vulnerabilities/29955