Cisco » Traffic Anomaly Detector Module : Security Vulnerabilities, CVEs, CVSS score >= 5
The Authentication, Authorization, and Accounting (AAA) capability in versions 5.0(1) and 5.0(3) of the software used by multiple Cisco Anomaly Detection and Mitigation products, when running with an incomplete TACACS+ configuration without a "tacacs-server host" command, allows remote attackers to bypass authentication and gain privileges, aka Bug ID CSCsd21455.
Max CVSS
5.1
EPSS Score
1.46%
Published
2006-02-18
Updated
2017-07-20
1 vulnerabilities found