Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact
4
CVSSv2

CVE-2015-4219

Published: 24/06/2015 Updated: 29/12/2016
CVSS v2 Base Score: 4 | Impact Score: 2.9 | Exploitability Score: 8
VMScore: 356
Vector: AV:N/AC:L/Au:S/C:P/I:N/A:N
Subscribe to Cisco

Vulnerability Summary

Cisco Secure Access Control System prior to 5.4(0.46.2) and 5.5 prior to 5.5(0.46) and Cisco Identity Services Engine 1.0(4.573) do not properly implement access control for support bundles, which allows remote authenticated users to obtain sensitive information via brute-force attempts to send valid credentials, aka Bug IDs CSCue00833 and CSCub40331.

Vulnerable Product Search on Vulmon Subscribe to Product

cisco secure access control system

cisco secure access control system 5.3.0.40.5

cisco identity services engine software 1.0.4.573

Vendor Advisories

Cisco: Cisco Identity Services Engine and Secure Access Control System Support Bundle Download Vulnerability
A vulnerability in Cisco Identity Services Engine and Secure Access Control System could allow an authenticated, remote attacker to gain unauthorized access to program data The vulnerability is due to weak authentication and authorization used to control access to support bundles stored on a targeted device An authenticated, remote attacker coul ...

References

CWE-264CWE-200http://tools.cisco.com/security/center/viewAlert.x?alertId=39501http://www.securityfocus.com/bid/75379http://www.securitytracker.com/id/1032714http://www.securitytracker.com/id/1032713https://nvd.nist.govhttp://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/Cisco-SA-20150623-CVE-2015-4219
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-1183hard-codedCVE-2024-28254CVE-2023-43790buffer overflowbypassCVE-2024-32633CVE-2024-1874CVE-2024-23558
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook