Improper Authentication and Authorization in Cisco Secure ACS 5.x (Bug ID CSCud75187)

Improper Authentication and Authorization in Cisco Secure ACS 5.x (Bug ID CSCud75187)

CVE-2014-0648 · HIGH Severity

AV:N/AC:L/AU:N/C:C/I:C/A:C

The RMI interface in Cisco Secure Access Control System (ACS) 5.x before 5.5 does not properly enforce authentication and authorization requirements, which allows remote attackers to obtain administrative access via a request to this interface, aka Bug ID CSCud75187.

Learn more about our Cis Benchmark Audit For Cisco.