CVE-2014-0678

2014-01-2522:00:00

cisco

www.cve.org

6.4 Medium

AI Score

Confidence

Low

0.003 Low

EPSS

Percentile

68.5%

JSON

The portal interface in Cisco Secure Access Control System (ACS) does not properly manage sessions, which allows remote authenticated users to hijack sessions and gain privileges via unspecified vectors, aka Bug ID CSCue65951.

References

osvdb.org/102558

secunia.com/advisories/56540

tools.cisco.com/security/center/content/CiscoSecurityNotice/CVE-2014-0678

tools.cisco.com/security/center/viewAlert.x?alertId=32567

www.securityfocus.com/bid/65144

www.securitytracker.com/id/1029688

exchange.xforce.ibmcloud.com/vulnerabilities/90732