← Back to CVEs
CVE-2015-0768
N/ADescription
The Device Work Center (DWC) component in Cisco Prime Network Control System (NCS) 2.1(0.0.85), 2.2(0.0.58), and 2.2(0.0.69) does not properly implement AAA roles, which allows remote authenticated users to bypass intended access restrictions and execute commands via a login session, aka Bug ID CSCur27371.
CVE Details
CVSS v3.1 ScoreN/A
Published6/12/2015
Last Modified4/12/2025
Sourcenvd
Honeypot Sightings0
Affected Products
cisco:prime_network_control_system
Weaknesses (CWE)
CWE-264
References
http://tools.cisco.com/security/center/viewAlert.x?alertId=39192(psirt@cisco.com)
http://www.securitytracker.com/id/1032541(psirt@cisco.com)
http://tools.cisco.com/security/center/viewAlert.x?alertId=39192(af854a3a-2127-422b-91ae-364da2661108)
http://www.securitytracker.com/id/1032541(af854a3a-2127-422b-91ae-364da2661108)
IOC Correlations
No correlations recorded
This product uses data from the NVD API but is not endorsed or certified by the NVD.