CVE-2014-0649

The RMI interface in Cisco Secure Access Control System (ACS) 5.x before 5.5 does not properly enforce authorization requirements, which allows remote authenticated users to obtain superadmin access via a request to this interface, aka Bug ID CSCud75180.

Severity	HIGH
CVSS	9.0
CWE	CWE-264
KEV
Published	12 years ago
Modified	2 weeks ago

Related Products

Product	Advisory	Evidence
Cisco Secure Access Control System (ACS)	cisco-sa-20140115-csacs	Cisco OpenVuln