CVE-2014-8027

CVE Database · CVE-2014-8027

CVE-2014-8027

· N/AModified

CVSS v3.1

N/A

EPSS

1.63%

Published

Jan 9, 2015

Modified

May 6, 2026

Public PoC / Exploit

All weaponized →

No public PoC or exploit code indexed for this CVE.

Links to public security research (Exploit-DB, Nuclei, Trickest, GitHub) for defensive use only.

Description

The RBAC component in Cisco Secure Access Control System (ACS) allows remote authenticated users to obtain Network Device Administrator privileges for Create, Delete, Read, and Update operations via crafted HTTP requests, aka Bug ID CSCuq79034.

Weaknesses (CWE)

CWE-264

Affected Products (1)

cisco · secure_access_control_systemvulnerable

References (10)

http://secunia.com/advisories/62159

http://tools.cisco.com/security/center/content/CiscoSecurityNotice/CVE-2014-8027

Vendor Advisory

http://www.securityfocus.com/bid/71944

http://www.securitytracker.com/id/1031516

https://exchange.xforce.ibmcloud.com/vulnerabilities/100558