Cisco VPN 3000 Series Concentrator User Credential Disclosure Vulnerability

Cisco VPN 3000 Series Concentrator User Credential Disclosure Vulnerability

Cisco VPN 3000 series concentrators are prone to an issue which may cause user credentials to be disclosed to remote attackers under some circumstances.

It has been reported that some web pages accessible to restricted access administrative users contain plaintext user credentials in the HTML source code of the vulnerable pages.