Cisco Clean Access Multiple JSP Pages Access Validation Vulnerability

Cisco Clean Access Multiple JSP Pages Access Validation Vulnerability

Cisco Clean Access is prone to a vulnerability that could allow unauthorized users to access various Web server JSP pages.

This could allow an attacker to upload unauthorized data, cause denial of service issues, and possibly take unauthorized actions through accessing inappropriate JSP pages.

Cisco Clean Access version 3.5.5 is reported vulnerable; prior versions may also be affected.

Cisco has stated that this issue is being tracked by bug ID CSCsc85405.