CVE-2014-0650
published 2014-01-16CVE-2014-0650: The web interface in Cisco Secure Access Control System (ACS) 5.x before 5.4 Patch 3 allows remote attackers to execute arbitrary operating-system commands via…
critical10CVSS 3.1
AVNACLAuNCCICAC
The web interface in Cisco Secure Access Control System (ACS) 5.x before 5.4 Patch 3 allows remote attackers to execute arbitrary operating-system commands via a request to this interface, aka Bug ID CSCue65962.
Affected
23 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| cisco | secure | — | — |
| cisco | secure_access_control_system | <= 5.4.0.46.2 | — |
| cisco | secure_access_control_system | — | — |
| cisco | secure_access_control_system | — | — |
| cisco | secure_access_control_system | — | — |
| cisco | secure_access_control_system | — | — |
| cisco | secure_access_control_system | — | — |
| cisco | secure_access_control_system | — | — |
| cisco | secure_access_control_system | — | — |
| cisco | secure_access_control_system | — | — |
| cisco | secure_access_control_system | — | — |
| cisco | secure_access_control_system | — | — |
| cisco | secure_access_control_system | — | — |
| cisco | secure_access_control_system | — | — |
| cisco | secure_access_control_system | — | — |
| cisco | secure_access_control_system | — | — |
| cisco | secure_access_control_system | — | — |
| cisco | secure_access_control_system | — | — |
| cisco | secure_access_control_system | — | — |
| cisco | secure_access_control_system | — | — |
| cisco | secure_access_control_system | — | — |
| cisco | secure_access_control_system | — | — |
| cisco | secure_access_control_system | — | — |