CVE Database · CVE-2000-1056
CVSS v3.1
N/A
EPSS
1.69%
Published
Dec 11, 2000
Modified
Apr 15, 2026
Public PoC / Exploit (1)
All weaponized →Links to public security research (Exploit-DB, Nuclei, Trickest, GitHub) for defensive use only.
Description
CiscoSecure ACS Server 2.4(2) and earlier allows remote attackers to bypass LDAP authentication on the server if the LDAP server allows null passwords.
Affected Products (3)
References (6)
