10
CVE-2014-0648
- EPSS 5.93%
- Veröffentlicht 16.01.2014 19:55:04
- Zuletzt bearbeitet 29.04.2026 01:13:23
- Quelle psirt@cisco.com
- CVE-Watchlists
- Unerledigt
The RMI interface in Cisco Secure Access Control System (ACS) 5.x before 5.5 does not properly enforce authentication and authorization requirements, which allows remote attackers to obtain administrative access via a request to this interface, aka Bug ID CSCud75187.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
Cisco ≫ Secure Access Control System Version <= 5.4.0.46.6
Cisco ≫ Secure Access Control System Version5.1
Cisco ≫ Secure Access Control System Version5.1.0.44
Cisco ≫ Secure Access Control System Version5.1.0.44.1
Cisco ≫ Secure Access Control System Version5.1.0.44.2
Cisco ≫ Secure Access Control System Version5.1.0.44.3
Cisco ≫ Secure Access Control System Version5.1.0.44.4
Cisco ≫ Secure Access Control System Version5.1.0.44.5
Cisco ≫ Secure Access Control System Version5.2
Cisco ≫ Secure Access Control System Version5.2.0.26
Cisco ≫ Secure Access Control System Version5.2.0.26.1
Cisco ≫ Secure Access Control System Version5.2.0.26.2
Cisco ≫ Secure Access Control System Version5.3.0.40.1
Cisco ≫ Secure Access Control System Version5.3.0.40.2
Cisco ≫ Secure Access Control System Version5.3.0.40.3
Cisco ≫ Secure Access Control System Version5.3.0.40.4
Cisco ≫ Secure Access Control System Version5.3.0.40.5
Cisco ≫ Secure Access Control System Version5.3.0.40.6
Cisco ≫ Secure Access Control System Version5.3.0.40.7
Cisco ≫ Secure Access Control System Version5.3.0.40.8
Cisco ≫ Secure Access Control System Version5.3.0.40.9
Cisco ≫ Secure Access Control System Version5.4.0.46.1
Cisco ≫ Secure Access Control System Version5.4.0.46.2
Cisco ≫ Secure Access Control System Version5.4.0.46.3
Cisco ≫ Secure Access Control System Version5.4.0.46.4
Cisco ≫ Secure Access Control System Version5.4.0.46.5
| Typ | Quelle | Score | Percentile |
|---|---|---|---|
| EPSS | FIRST.org | 5.93% | 0.923 |
| Quelle | Base Score | Exploit Score | Impact Score | Vector String |
|---|---|---|---|---|
| nvd@nist.gov | 10 | 10 | 10 |
AV:N/AC:L/Au:N/C:C/I:C/A:C
|
http://osvdb.org/102117
http://secunia.com/advisories/56213
http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20140115-csacs
http://tools.cisco.com/security/center/viewAlert.x?alertId=32379
http://www.securityfocus.com/bid/64962
http://www.securitytracker.com/id/1029634
https://exchange.xforce.ibmcloud.com/vulnerabilities/90431