CVE-2015-0746
First published: Fri May 22 2015(Updated: )
The REST API in Cisco Access Control Server (ACS) 5.5(0.46.2) allows remote attackers to cause a denial of service (API outage) by sending many requests, aka Bug ID CSCut62022.
Credit: ykramarz@cisco.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Cisco Secure Access Control Server | =5.5\(0.46.2\) |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is the severity of CVE-2015-0746?
CVE-2015-0746 is classified as a denial of service vulnerability, impacting the availability of the Cisco Access Control Server.
How do I fix CVE-2015-0746?
To address CVE-2015-0746, it is recommended to apply the appropriate security patches provided by Cisco for version 5.5(0.46.2).
Who is affected by CVE-2015-0746?
CVE-2015-0746 affects users of Cisco Secure Access Control Server version 5.5(0.46.2).
What type of attack does CVE-2015-0746 involve?
CVE-2015-0746 involves a remote denial of service attack that can disrupt the API functionality of Cisco Access Control Server.
Can CVE-2015-0746 be exploited from the Internet?
Yes, CVE-2015-0746 can be exploited remotely, allowing attackers to send numerous requests to trigger an API outage.
- collector/nvd-index
- vendor/cisco
- canonical/cisco secure access control server
- version/cisco secure access control server/5.5\(0.46.2\)