Loading
Cisco Secure Access Control Server (ACS) provides an unintentional administration web interface based on Apache Tomcat, which allows remote authenticated users to modify application files and configuration files, and consequently execute arbitrary code, by leveraging administrative privileges, aka Bug ID CSCuj83189.
Use CWE-264, Cisco vendor hub and Secure Access Control System product page to widen CVE-2014-2130 into its surrounding weakness, vendor, and product context.
Compare it with CVE-2018-0147, CVE-2018-0253 and CVE-2017-3841 for nearby disclosures in the same product family. Additional editorial context is available in The Weekly Cybersecurity Brief: January 30th, 2026.