The portal interface in Cisco Secure Access Control System (ACS) does not properly manage sessions, which allows remote authenticated users to hijack sessions and gain privileges via unspecified vectors, aka Bug ID CSCue65951.
References
| Link | Resource |
|---|---|
| http://tools.cisco.com/security/center/content/CiscoSecurityNotice/CVE-2014-0678 | Vendor Advisory |
| http://www.securitytracker.com/id/1029688 | Third Party Advisory VDB Entry |
| http://www.securityfocus.com/bid/65144 | Third Party Advisory VDB Entry |
| http://osvdb.org/102558 | |
| http://tools.cisco.com/security/center/viewAlert.x?alertId=32567 | Vendor Advisory |
| http://secunia.com/advisories/56540 | |
| https://exchange.xforce.ibmcloud.com/vulnerabilities/90732 |
Advertisement
Configurations
Information
Published : 2014-01-25 14:55
Updated : 2017-08-28 18:34
NVD link : CVE-2014-0678
Mitre link : CVE-2014-0678
JSON object : View
CWE
CWE-264
Permissions, Privileges, and Access Controls
Advertisement
Products Affected
cisco
- secure_access_control_system