Unauthenticated Access Vulnerability in Cisco Policy Suite

Unauthenticated Access Vulnerability in Cisco Policy Suite

CVE-2018-0376 · HIGH Severity

AV:N/AC:L/AU:N/C:P/I:P/A:P

A vulnerability in the Policy Builder interface of Cisco Policy Suite before 18.2.0 could allow an unauthenticated, remote attacker to access the Policy Builder interface. The vulnerability is due to a lack of authentication. An attacker could exploit this vulnerability by accessing the Policy Builder interface. A successful exploit could allow the attacker to make changes to existing repositories and create new repositories. Cisco Bug IDs: CSCvi35109.

Learn more about our Cis Benchmark Audit For Cisco.