Lucene search

[email protected]CVE-2007-5571

HistoryOct 18, 2007 - 9:17 p.m.

CVE-2007-5571

2007-10-1821:17:00

CWE-264

[email protected]

web.nvd.nist.gov

cisco

fwsm

acl

bypass

vulnerability

nvd

cscsj52536

6.8 Medium

AI Score

Confidence

Low

6.8 Medium

CVSS2

Access Vector

Access Complexity

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:M/Au:N/C:P/I:P/A:P

0.012 Low

EPSS

Percentile

85.1%

JSON

Cisco Firewall Services Module (FWSM) 3.1(6), and 3.2(2) and earlier, does not properly enforce edited ACLs, which might allow remote attackers to bypass intended restrictions on network traffic, aka CSCsj52536.

Affected configurations

NVD

Node

ciscofirewall_services_moduleRange3.1–3.1\(6\)

ciscofirewall_services_moduleRange3.2–3.2\(2\)

CPENameOperatorVersion
cisco:firewall_services_modulecisco firewall services modulele3.1\(6\)
cisco:firewall_services_modulecisco firewall services modulele3.2\(2\)

CPE	Name	Operator	Version
cisco:firewall_services_module	cisco firewall services module	le	3.1\(6\)
cisco:firewall_services_module	cisco firewall services module	le	3.2\(2\)

References

secunia.com/advisories/27236

www.cisco.com/en/US/products/products_security_advisory09186a00808dda61.shtml

www.securityfocus.com/bid/26109

www.securitytracker.com/id?1018825

www.vupen.com/english/advisories/2007/3530

exchange.xforce.ibmcloud.com/vulnerabilities/37258

6.8 Medium

AI Score

Confidence

Low

6.8 Medium

CVSS2

Access Vector

Access Complexity

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:M/Au:N/C:P/I:P/A:P

0.012 Low

EPSS

Percentile

85.1%

JSON

Related for CVE-2007-5571

nvd1 cvelist1 prion1 cisco1