CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:L/Au:N/C:N/I:P/A:N
AI Score
Confidence
Low
EPSS
Percentile
86.8%
The web-based management interface in Cisco Secure Access Control System (ACS) 5.1 before 5.1.0.44.6 and 5.2 before 5.2.0.26.3 allows remote attackers to change arbitrary user passwords via unspecified vectors, aka Bug ID CSCtl77440.
Vendor | Product | Version | CPE |
---|---|---|---|
cisco | secure_access_control_system | 5.1 | cpe:2.3:a:cisco:secure_access_control_system:5.1:*:*:*:*:*:*:* |
cisco | secure_access_control_system | 5.1.0.44 | cpe:2.3:a:cisco:secure_access_control_system:5.1.0.44:*:*:*:*:*:*:* |
cisco | secure_access_control_system | 5.1.0.44.1 | cpe:2.3:a:cisco:secure_access_control_system:5.1.0.44.1:*:*:*:*:*:*:* |
cisco | secure_access_control_system | 5.1.0.44.2 | cpe:2.3:a:cisco:secure_access_control_system:5.1.0.44.2:*:*:*:*:*:*:* |
cisco | secure_access_control_system | 5.1.0.44.3 | cpe:2.3:a:cisco:secure_access_control_system:5.1.0.44.3:*:*:*:*:*:*:* |
cisco | secure_access_control_system | 5.1.0.44.4 | cpe:2.3:a:cisco:secure_access_control_system:5.1.0.44.4:*:*:*:*:*:*:* |
cisco | secure_access_control_system | 5.1.0.44.5 | cpe:2.3:a:cisco:secure_access_control_system:5.1.0.44.5:*:*:*:*:*:*:* |
cisco | secure_access_control_system | 5.2 | cpe:2.3:a:cisco:secure_access_control_system:5.2:*:*:*:*:*:*:* |
cisco | secure_access_control_system | 5.2.0.26 | cpe:2.3:a:cisco:secure_access_control_system:5.2.0.26:*:*:*:*:*:*:* |
cisco | secure_access_control_system | 5.2.0.26.1 | cpe:2.3:a:cisco:secure_access_control_system:5.2.0.26.1:*:*:*:*:*:*:* |