CVE Vulnerabilities

CVE-2015-6348

Published: Oct 30, 2015 | Modified: Dec 07, 2016
CVSS 3.x
N/A
Source:
NVD
CVSS 2.x
4 MEDIUM
AV:N/AC:L/Au:S/C:P/I:N/A:N
RedHat/V2
RedHat/V3
Ubuntu

The report-generation web interface in the Solution Engine in Cisco Secure Access Control Server (ACS) 5.7(0.15) allows remote authenticated users to bypass intended RBAC restrictions, and read report or status information, by visiting an unspecified web page.

Affected Software

Name Vendor Start Version End Version
Secure_access_control_server Cisco 5.7.0.15 (including) 5.7.0.15 (including)

References