Published: 03/03/2016 Updated: 14/03/2016

CVSS v2 Base Score: 5 | Impact Score: 2.9 | Exploitability Score: 10

CVSS v3 Base Score: 5.3 | Impact Score: 1.4 | Exploitability Score: 3.9

VMScore: 445

Vector: AV:N/AC:L/Au:N/C:P/I:N/A:N

The password-management administration component in Cisco Policy Suite (CPS) 7.0.1.3, 7.0.2, 7.0.2-att, 7.0.3-att, 7.0.4-att, and 7.5.0 allows remote malicious users to bypass intended RBAC restrictions and read unspecified data via unknown vectors, aka Bug ID CSCut85211.

Vulnerable Product	Search on Vulmon	Subscribe to Product
cisco cisco policy suite 7.0.5
cisco cisco policy suite 7.0.3-att
cisco cisco policy suite 7.0.4-att
cisco cisco policy suite 7.0.2-att
cisco cisco policy suite 7.0.2
cisco cisco policy suite 7.0.1.3

A vulnerability in password management administration of the Cisco Policy Suite (CPS) application could allow an unauthenticated, remote attacker to gain read-only access to information that is confidential and should have restricted access The vulnerability is due to the lack of a proper role-based access control (RBAC) implementation An attack ...

CWE-200 http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20160302-psc https://nvd.nist.gov http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20160302-psc

Get Started

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Twitter Reddit Linkedin Facebook

CVE-2016-1357

Vulnerability Summary

Vendor Advisories

References

Vulmon Search

About

Products

Connect