Vulnerability in Cisco Secure_access_control_system

CVE-2014-2130

Cisco Secure Access Control Server (ACS) provides an unintentional administration web interface based on Apache Tomcat, which allows remote authenticated users to modify application files and configuration files, and consequently execute a…

EPSS: 0.012 (78.9th percentile) — read the EPSS interpretation.

Affected products

Cisco Secure_access_control_system
N/a — versions n/a

Weakness classification (CWE)

CWE-264

References

1031844 (vdb-entry, x_refsource_SECTRACK)
20150304 Cisco Secure Access Control Server Default Tomcat Administration Interface Vulnerability (x_refsource_CISCO, vendor-advisory, Vendor Advisory)