Lucene search

[email protected]CVE-2002-1706

HistoryJun 21, 2005 - 4:00 a.m.

CVE-2002-1706

2005-06-2104:00:00

CWE-347

[email protected]

web.nvd.nist.gov

cisco

ios

software

vulnerability

remote

modification

docsis

settings

nvd

cve-2002-1706

5 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:L/Au:N/C:N/I:P/A:N

7.5 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

HIGH

Availability Impact

NONE

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N

0.021 Low

EPSS

Percentile

89.3%

JSON

Cisco IOS software 11.3 through 12.2 running on Cisco uBR7200 and uBR7100 series Universal Broadband Routers allows remote attackers to modify Data Over Cable Service Interface Specification (DOCSIS) settings via a DOCSIS file without a Message Integrity Check (MIC) signature, which is approved by the router.

Affected configurations

NVD

Node

ciscoiosRange11.3–12.2

AND

ciscoubr7100Match-

ciscoubr7200Match-

CPENameOperatorVersion
cisco:ioscisco iosle12.2

CPE	Name	Operator	Version
cisco:ios	cisco ios	le	12.2

References

www.cisco.com/warp/public/707/cmts-MD5-bypass-pub.shtml

www.securityfocus.com/bid/5041

exchange.xforce.ibmcloud.com/vulnerabilities/9368

5 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:L/Au:N/C:N/I:P/A:N

7.5 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

HIGH

Availability Impact

NONE

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N

0.021 Low

EPSS

Percentile

89.3%

JSON

Related for CVE-2002-1706

nvd1 nessus1 cvelist1 cisco1