CVE-2012-3063

Name of the Vulnerable Software and Affected Versions Cisco Application Control Engine (ACE) versions before A4(2.3) Cisco Application Control Engine (ACE) versions before A5(1.1)

Description The issue allows remote authenticated administrators to bypass intended access restrictions and read or modify configuration settings under certain circumstances. This occurs when multicontext mode is enabled and the management IP address is not properly shared among multiple contexts.

Recommendations For versions before A4(2.3), update to A4(2.3) or later to resolve the issue. For versions before A5(1.1), update to A5(1.1) or later to resolve the issue.