Security News > 2018 > March > Cisco fixes critical flaw in its Secure Access Control System

Cisco fixes critical flaw in its Secure Access Control System
2018-03-08 18:03

Cisco has pushed out fixes for security vulnerabilities in a wide variety of its products, including two critical flaws in its Secure Access Control System (ACS) and its Prime Collaboration Provisioning (PCP) software. About the vulnerabilities The vulnerability (CVE-2018-0141) in the Cisco Prime Collaboration Provisioning software was found during internal security testing and is due to a hard-coded account password on the system. “An attacker could exploit this vulnerability by connecting to the affected system … More → The post Cisco fixes critical flaw in its Secure Access Control System appeared first on Help Net Security.


News URL

http://feedproxy.google.com/~r/HelpNetSecurity/~3/nJFIw14cwF0/

Related Vulnerability

DATE CVE VULNERABILITY TITLE RISK
2018-03-08 CVE-2018-0141 Use of Hard-coded Credentials vulnerability in Cisco products
A vulnerability in Cisco Prime Collaboration Provisioning (PCP) Software 11.6 could allow an unauthenticated, local attacker to log in to the underlying Linux operating system.
local
low complexity
cisco CWE-798
8.4

Related vendor

VENDOR LAST 12M #/PRODUCTS LOW MEDIUM HIGH CRITICAL TOTAL VULNS
Cisco 2046 21 1773 1669 288 3751