CVE-2015-6345
CVE-2015-6345 affects Cisco Secure ACS 5.7(0.15) with the Solution Engine. Root cause: lack of input validation in SQL queries, enabling a remote authenticated attacker to run arbitrary SQL commands via a crafted URL. Impact: partial confidentiality, integrity, and availability. Cisco has publish...