Cisco Secure ACS contains a flaw that is triggered when passwords passed via the TACACS+ authentication protocol are not properly validated. This may allow a remote attacker to gain access to a user's system without authentication.
The vendor has released a patch to address this vulnerability. Check the vendor advisory, changelog, or solution in the references section. There are no known workarounds or upgrades to correct this issue.