Bypassing Access Restrictions and Obtaining Sensitive User Information in Cisco ASA CX Context-Aware Security (Bug ID CSCuv74105)

Bypassing Access Restrictions and Obtaining Sensitive User Information in Cisco ASA CX Context-Aware Security (Bug ID CSCuv74105)

CVE-2015-6344 · MEDIUM Severity

AV:N/AC:L/AU:S/C:P/I:N/A:N

The web-based GUI in Cisco Adaptive Security Appliance (ASA) CX Context-Aware Security 9.3(4.1.11) allows remote authenticated users to bypass intended access restrictions and obtain sensitive user information via an unspecified HTTP request, aka Bug ID CSCuv74105.

Learn more about our Cis Benchmark Audit For Cisco.