Описание
Cisco Secure Access Control Server (ACS) provides an unintentional administration web interface based on Apache Tomcat, which allows remote authenticated users to modify application files and configuration files, and consequently execute arbitrary code, by leveraging administrative privileges, aka Bug ID CSCuj83189.
Уязвимые конфигурации
Конфигурация 1
cpe:2.3:a:cisco:secure_access_control_system:-:*:*:*:*:*:*:*
EPSS
Процентиль: 78%
0.01153
Низкий
6.5 Medium
CVSS2
Дефекты
CWE-264
Связанные уязвимости
github
больше 3 лет назад
Cisco Secure Access Control Server (ACS) provides an unintentional administration web interface based on Apache Tomcat, which allows remote authenticated users to modify application files and configuration files, and consequently execute arbitrary code, by leveraging administrative privileges, aka Bug ID CSCuj83189.
EPSS
Процентиль: 78%
0.01153
Низкий
6.5 Medium
CVSS2
Дефекты
CWE-264