writeups.xyz / SSD Advisory – Cisco Secure Manager Appliance jwt_api_impl Hardcoded JWT Secret Elevation of Privilege

Submitter : c2a

Date: 14 November 2022

Bounty : undisclosed

Vulnerabilities :

• Hardcoded Credentials
• Security Code Review
• JWT
• Privilege Escalation

Programs :

• Cisco

Authors :

• -

Link :
https://ssd-disclosure.com/ssd-advisory-cisco-secure-manager-appliance-jwt_api_impl-hardcoded-jwt-secret-elevation-of-privilege/