Recent Vulnerabilities Research Posts Trends Blog About Contact

Published: 11/04/2015 Updated: 29/09/2015

CVSS v2 Base Score: 5 | Impact Score: 2.9 | Exploitability Score: 10

VMScore: 445

Vector: AV:N/AC:L/Au:N/C:N/I:P/A:N

Cisco ASR 9000 devices with software 5.3.0.BASE do not recognize that certain ACL entries have a single-host constraint, which allows remote malicious users to bypass intended network-resource access restrictions by using an address that was not supposed to have been allowed, aka Bug ID CSCur28806.

Vulnerable Product	Search on Vulmon	Subscribe to Product
cisco ios_xr 5.3.0_base
cisco asr_9922 -
cisco asr_9912 -
cisco asr_9904 -
cisco asr_9010 -
cisco asr_9001 -
cisco asr_9006 -

CWE-284 http://tools.cisco.com/security/center/viewAlert.x?alertId=38292 http://www.securitytracker.com/id/1032059 https://nvd.nist.gov

Get Started

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Twitter Reddit Linkedin Facebook

CVE-2015-0694

Vulnerability Summary

References

Vulmon Search

About

Products

Connect