CVE-2014-0649
published 2014-01-16CVE-2014-0649: The RMI interface in Cisco Secure Access Control System (ACS) 5.x before 5.5 does not properly enforce authorization requirements, which allows remote…
critical9CVSS 3.1
AVNACLAuSCCICAC
The RMI interface in Cisco Secure Access Control System (ACS) 5.x before 5.5 does not properly enforce authorization requirements, which allows remote authenticated users to obtain superadmin access via a request to this interface, aka Bug ID CSCud75180.
Affected
27 ranges· showing 25
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| cisco | secure | — | — |
| cisco | secure_access_control_system | <= 5.4.0.46.6 | — |
| cisco | secure_access_control_system | — | — |
| cisco | secure_access_control_system | — | — |
| cisco | secure_access_control_system | — | — |
| cisco | secure_access_control_system | — | — |
| cisco | secure_access_control_system | — | — |
| cisco | secure_access_control_system | — | — |
| cisco | secure_access_control_system | — | — |
| cisco | secure_access_control_system | — | — |
| cisco | secure_access_control_system | — | — |
| cisco | secure_access_control_system | — | — |
| cisco | secure_access_control_system | — | — |
| cisco | secure_access_control_system | — | — |
| cisco | secure_access_control_system | — | — |
| cisco | secure_access_control_system | — | — |
| cisco | secure_access_control_system | — | — |
| cisco | secure_access_control_system | — | — |
| cisco | secure_access_control_system | — | — |
| cisco | secure_access_control_system | — | — |
| cisco | secure_access_control_system | — | — |
| cisco | secure_access_control_system | — | — |
| cisco | secure_access_control_system | — | — |
| cisco | secure_access_control_system | — | — |
| cisco | secure_access_control_system | — | — |