2 matches found
CVE-2018-15465 Cisco Adaptive Security Appliance Software Privilege Escalation Vulnerability
A vulnerability in the authorization subsystem of Cisco Adaptive Security Appliance ASA Software could allow an authenticated, but unprivileged levels 0 and 1, remote attacker to perform privileged actions by using the web management interface. The vulnerability is due to improper validation of...
CVE-2018-15465
CVE-2018-15465 affects Cisco ASA software, where the authorization subsystem fails to properly validate user privileges in the web management interface. An authenticated but unprivileged user (levels 0/1) can issue specific HTTPS requests to perform privileged actions, potentially exposing sensit...