Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
cvelistCiscoCVELIST:CVE-2017-6620
HistoryMay 03, 2017 - 9:00 p.m.

CVE-2017-6620

2017-05-0321:00:00
CWE-264
cisco
www.cve.org
2

AI Score

5.8

Confidence

High

EPSS

0.001

Percentile

50.2%

JSON

A vulnerability in the remote management access control list (ACL) feature of the Cisco CVR100W Wireless-N VPN Router could allow an unauthenticated, remote attacker to bypass the remote management ACL. The vulnerability is due to incorrect implementation of the ACL decision made during the ingress connection request to the remote management interface. An attacker could exploit this vulnerability by sending a connection to the management IP address or domain name of the targeted device. A successful exploit could allow the attacker to bypass the configured remote management ACL. This can occur when the Remote Management configuration parameter is set to Disabled. This vulnerability affects Cisco CVR100W Wireless-N VPN Routers running a firmware image prior to 1.0.1.24. Cisco Bug IDs: CSCvc14457.

CNA Affected

[
  {
    "product": "Cisco CVR100W Wireless-N VPN Router",
    "vendor": "n/a",
    "versions": [
      {
        "status": "affected",
        "version": "Cisco CVR100W Wireless-N VPN Router"
      }
    ]
  }
]

Related

cve 1
prion 1
nvd 1
cisco 1
cve
cve
CVE-2017-6620
2017-05-03 21:59:00
prion
prion
Design/Logic Flaw
2017-05-03 21:59:00
nvd
nvd
CVE-2017-6620
2017-05-03 21:59:00
cisco
cisco
Cisco CVR100W Wireless-N VPN Router Remote Management Security Bypass Vulnerability
2017-05-03 16:00:00

AI Score

5.8

Confidence

High

EPSS

0.001

Percentile

50.2%

JSON
Related for CVELIST:CVE-2017-6620
cve1prion1nvd1cisco1