CVE

Id
68087  
CVE No.
CVE-2014-0678  
Status
Candidate  
Description
The portal interface in Cisco Secure Access Control System (ACS) does not properly manage sessions, which allows remote authenticated users to hijack sessions and gain privileges via unspecified vectors, aka Bug ID CSCue65951.  
Phase
Assigned (20140102)  
Votes
None (candidate not yet proposed)  
Comments
 

Actions

Related CVE References

Id CVE Id CVE No. Reference Actions
657456 68087 CVE-2014-0678 CONFIRM:http://tools.cisco.com/security/center/viewAlert.x?alertId=32567  View
657457 68087 CVE-2014-0678 CISCO:20140124 Cisco Secure ACS Portal Session Management Vulnerability  View
657458 68087 CVE-2014-0678 URL:http://tools.cisco.com/security/center/content/CiscoSecurityNotice/CVE-2014-0678  View
657459 68087 CVE-2014-0678 BID:65144  View
657460 68087 CVE-2014-0678 URL:http://www.securityfocus.com/bid/65144  View
657461 68087 CVE-2014-0678 OSVDB:102558  View
657462 68087 CVE-2014-0678 URL:http://osvdb.org/102558  View
657463 68087 CVE-2014-0678 SECTRACK:1029688  View
657464 68087 CVE-2014-0678 URL:http://www.securitytracker.com/id/1029688  View
657465 68087 CVE-2014-0678 SECUNIA:56540  View
657466 68087 CVE-2014-0678 URL:http://secunia.com/advisories/56540  View
657467 68087 CVE-2014-0678 XF:cisco-acs-cve20140678-unauth-access(90732)  View

Related JVN

Id JVN No. Title Summary CVE No. CVE Id CVSS_v2 CVSS_v3 JVN URL Actions
12433 JVNDB-2014-001308 Cisco Unified Communications Manager における権限を取得される脆弱性 Cisco Unified Communications Manager (別名 Unified CM) には、権限を取得される脆弱性が存在します。 CVE-2014-0686 68087 6 http://jvndb.jvn.jp/ja/contents/2014/JVNDB-2014-001308.html  View