Lucene search

[email protected]CVE-2000-0368

HistoryMar 12, 2001 - 5:00 a.m.

CVE-2000-0368

2001-03-1205:00:00

CWE-200

[email protected]

web.nvd.nist.gov

cisco

ios 9.1

access

attacker

sensitive data

command history.

7.2 High

AI Score

Confidence

Low

2.1 Low

CVSS2

Access Vector

LOCAL

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

NONE

AV:L/AC:L/Au:N/C:P/I:N/A:N

0.0004 Low

EPSS

Percentile

14.3%

JSON

Classic Cisco IOS 9.1 and later allows attackers with access to the login prompt to obtain portions of the command history of previous users, which may allow the attacker to access sensitive data.

CPENameOperatorVersion
cisco:ioscisco iosle9.1

CPE	Name	Operator	Version
cisco:ios	cisco ios	le	9.1

References

www.ciac.org/ciac/bulletins/j-009.shtml

www.cisco.com/warp/public/770/ioshist-pub.shtml

7.2 High

AI Score

Confidence

Low

2.1 Low

CVSS2

Access Vector

LOCAL

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

NONE

AV:L/AC:L/Au:N/C:P/I:N/A:N

0.0004 Low

EPSS

Percentile

14.3%

JSON