Lucene search

[email protected]CVE-2007-0968

HistoryFeb 16, 2007 - 12:28 a.m.

CVE-2007-0968

2007-02-1600:28:00

NVD-CWE-Other

[email protected]

web.nvd.nist.gov

cve-2007-0968

cisco

firewall services module

fwsm

acl

remote authentication

access control entries

6.5 Medium

AI Score

Confidence

Low

9 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

SINGLE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:S/C:C/I:C/A:C

0.005 Low

EPSS

Percentile

76.3%

JSON

Unspecified vulnerability in Cisco Firewall Services Module (FWSM) before 2.3(4.7) and 3.x before 3.1(3.1) causes the access control entries (ACE) in an ACL to be improperly evaluated, which allows remote authenticated users to bypass intended certain ACL protections.

CPENameOperatorVersion
cisco:firewall_services_modulecisco firewall services moduleeq2.3
cisco:firewall_services_modulecisco firewall services moduleeq3.1

CPE	Name	Operator	Version
cisco:firewall_services_module	cisco firewall services module	eq	2.3
cisco:firewall_services_module	cisco firewall services module	eq	3.1

References

secunia.com/advisories/24172

www.cisco.com/en/US/products/products_security_advisory09186a00807e2481.shtml

www.securityfocus.com/bid/22561

www.securitytracker.com/id?1017650

www.vupen.com/english/advisories/2007/0609

exchange.xforce.ibmcloud.com/vulnerabilities/32521

6.5 Medium

AI Score

Confidence

Low

9 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

SINGLE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:S/C:C/I:C/A:C

0.005 Low

EPSS

Percentile

76.3%

JSON

Related for CVE-2007-0968

prion1 securityvulns1