Secure Access Control System@5.1 Security Vulnerabilities and Issues — Secure Access Control System@5.1 CVE List

Lucene search

CiscoSecure Access Control System5.1

4 matches found

CVE•added 2014/01/16 7:55 p.m.•47 views

CVE-2014-0648

The RMI interface in Cisco Secure Access Control System (ACS) 5.x before 5.5 does not properly enforce authentication and authorization requirements, which allows remote attackers to obtain administrative access via a request to this interface, aka Bug ID CSCud75187.

10CVSS6.8AI score0.08672EPSS

CVE•added 2011/04/04 12:27 p.m.•45 views

CVE-2011-0951

The web-based management interface in Cisco Secure Access Control System (ACS) 5.1 before 5.1.0.44.6 and 5.2 before 5.2.0.26.3 allows remote attackers to change arbitrary user passwords via unspecified vectors, aka Bug ID CSCtl77440.

5CVSS6.9AI score0.65335EPSS

CVE•added 2014/01/16 7:55 p.m.•41 views

CVE-2014-0649

The RMI interface in Cisco Secure Access Control System (ACS) 5.x before 5.5 does not properly enforce authorization requirements, which allows remote authenticated users to obtain superadmin access via a request to this interface, aka Bug ID CSCud75180.

9CVSS6.2AI score0.03423EPSS

CVE•added 2014/01/16 7:55 p.m.•38 views

CVE-2014-0650

The web interface in Cisco Secure Access Control System (ACS) 5.x before 5.4 Patch 3 allows remote attackers to execute arbitrary operating-system commands via a request to this interface, aka Bug ID CSCue65962.

10CVSS7.7AI score0.06622EPSS