A vulnerability was reported in Cisco Mobility Services Engine. A remote user can login anonymously.
Cisco Mobility Services Engine
A vulnerability in Cisco Mobility Services Engine could allow an unauthenticated, remote attacker to connect to a database replication port anonymously via Secure Sockets Layer (SSL).
The vulnerability is due to the misconfiguration of the Oracle SSL service. An attacker could exploit this vulnerability by connecting to an unprotected port. An exploit could allow the attacker to login as an anonymous user.
User access via network
The vendor has issued a fix