Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
The RBAC component in Cisco Secure Access Control System (ACS) allows remote authenticated users to obtain Network Device Administrator privileges for Create, Delete, Read, and Update operations via crafted HTTP requests, aka Bug ID CSCuq79034.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Cisco Secure Access Control System RBAC组件权限许可和访问控制漏洞
Vulnerability Description
Cisco Secure Access Control System(ACS)是美国思科(Cisco)公司的一套安全访问控制系统,它可通过RADIUS、TACACS协议分别对网络访问和网络设备访问进行控制。RBAC是其中的一个基于角色的访问控制组件。 Cisco Secure ACS的RBAC组件中存在安全漏洞。远程攻击者可通过发送HTTP请求利用该漏洞获取Network Device Administrator的创建、删除、读取和升级操作权限。
CVSS Information
N/A
Vulnerability Type
N/A