Information Disclosure Vulnerability in Cisco Secure Access Control System (ACS) Web Interface

Information Disclosure Vulnerability in Cisco Secure Access Control System (ACS) Web Interface

CVE-2013-3428 · MEDIUM Severity

AV:N/AC:L/AU:S/C:P/I:N/A:N

The web interface in Cisco Secure Access Control System (ACS) does not properly suppress error-condition details, which allows remote authenticated users to obtain sensitive information via an unspecified request that triggers an error, aka Bug ID CSCue65957.

Learn more about our Cis Benchmark Audit For Cisco.