Vulnerability Database

289,871

Total vulnerabilities in the database

CVE-2014-0649

The RMI interface in Cisco Secure Access Control System (ACS) 5.x before 5.5 does not properly enforce authorization requirements, which allows remote authenticated users to obtain superadmin access via a request to this interface, aka Bug ID CSCud75180.

  • Published: Jan 16, 2014
  • Updated: Apr 13, 2023
  • CVE: CVE-2014-0649
  • Severity: High
  • Exploit:

CVSS v2:

  • Severity: High
  • Score: 9
  • AV:N/AC:L/Au:S/C:C/I:C/A:C

CWEs:

Software From Fixed in
cisco / secure_access_control_system 5.3.0.40.1 5.3.0.40.1.x
cisco / secure_access_control_system 5.3.0.40.7 5.3.0.40.7.x
cisco / secure_access_control_system 5.3.0.40.9 5.3.0.40.9.x
cisco / secure_access_control_system 5.3.0.40.2 5.3.0.40.2.x
cisco / secure_access_control_system 5.4.0.46.3 5.4.0.46.3.x
cisco / secure_access_control_system 5.4.0.46.2 5.4.0.46.2.x
cisco / secure_access_control_system 5.4.0.46.4 5.4.0.46.4.x
cisco / secure_access_control_system 5.3.0.40.6 5.3.0.40.6.x
cisco / secure_access_control_system 5.3.0.40.5 5.3.0.40.5.x
cisco / secure_access_control_system 5.2 5.2.x
cisco / secure_access_control_system 5.2.0.26 5.2.0.26.x
cisco / secure_access_control_system 5.3.0.40.3 5.3.0.40.3.x
cisco / secure_access_control_system 5.4.0.46.5 5.4.0.46.5.x
cisco / secure_access_control_system 5.1.0.44.2 5.1.0.44.2.x
cisco / secure_access_control_system 5.3.0.40.4 5.3.0.40.4.x
cisco / secure_access_control_system 5.3.0.40.8 5.3.0.40.8.x
cisco / secure_access_control_system 5.1.0.44 5.1.0.44.x
cisco / secure_access_control_system 5.1.0.44.5 5.1.0.44.5.x
cisco / secure_access_control_system 5.1.0.44.3 5.1.0.44.3.x
cisco / secure_access_control_system 5.1.0.44.1 5.1.0.44.1.x
cisco / secure_access_control_system - 5.4.0.46.6.x
cisco / secure_access_control_system 5.2.0.26.2 5.2.0.26.2.x
cisco / secure_access_control_system 5.1 5.1.x
cisco / secure_access_control_system 5.2.0.26.1 5.2.0.26.1.x
cisco / secure_access_control_system 5.4.0.46.1 5.4.0.46.1.x
cisco / secure_access_control_system 5.1.0.44.4 5.1.0.44.4.x