CVE-2014-0667

Published Jan 16, 2014

Last updated 7 years ago

Overview

Description
The RMI interface in Cisco Secure Access Control System (ACS) does not properly enforce authorization requirements, which allows remote authenticated users to read arbitrary files via a request to this interface, aka Bug ID CSCud75169.
Source
ykramarz@cisco.com
NVD status
Modified

Social media

Hype score
Not currently trending

Risk scores

CVSS 2.0

Type
Primary
Base score
6.3
Impact score
6.9
Exploitability score
6.8
Vector string
AV:N/AC:M/Au:S/C:C/I:N/A:N

Weaknesses

nvd@nist.gov
CWE-264

Configurations