Critical flaw allows attackers to take over Cisco Elastic Services Controllers
Cisco has patched a critical, remotely exploitable authentication bypass vulnerability in Cisco Elastic Services Controller (ESC), a popular enterprise software for managing virtualized resources. Cisco Elastic Services Controller Architecture About the vulnerability (CVE-2019-1867) “The vulnerability is due to improper validation of API requests. An attacker could exploit this vulnerability by sending a crafted [...]