Cisco addressed 15 flaws affecting a dozen products, including two high severity flaws that could be exploited by attackers to trigger a DoS condition or bypass local authentication. The most important issues affect the network administration product CISCO Identity Services Engine and its Videoscape Distribution Suite. An attacker could exploit the flaw by authenticating with a valid external user account that matches an internal username. If successful the exploit would grant the attacker Super Admin privileges for the engines admin portal, Cisco said. The denial of service issue is caused by the improper handling of authentication requests.”]
Source: http://securityaffairs.co/wordpress/61691/security/cisco-flaws.html