Back to search
CVE-2015-4219
Published: Jun 24, 2015
Modified: Aug 6, 2024
PUBLISHED
Description
Cisco Secure Access Control System before 5.4(0.46.2) and 5.5 before 5.5(0.46) and Cisco Identity Services Engine 1.0(4.573) do not properly implement access control for support bundles, which allows remote authenticated users to obtain sensitive information via brute-force attempts to send valid credentials, aka Bug IDs CSCue00833 and CSCub40331.
| Vendor | Product | Versions |
|---|---|---|
n/a | n/a | affected n/a |
References
1032713
vdb-entry
x_refsource_SECTRACK
20150623 Cisco Identity Services Engine and Secure Access Control System Support Bundle Download Vulnerability
vendor-advisory
x_refsource_CISCO
75379
vdb-entry
x_refsource_BID
1032714
vdb-entry
x_refsource_SECTRACK
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now