Lucene search
This script is Copyright (C) 2019-2021 and is owned by Tenable, Inc. or an Affiliate thereof.OT_500318.NASLHistoryNov 08, 2019 - 12:00 a.m.
Cisco Ios Improper Authentication
2019-11-0800:00:00
This script is Copyright (C) 2019-2021 and is owned by Tenable, Inc. or an Affiliate thereof.
www.tenable.com
13
0.001 Low
EPSS
Percentile
20.7%
A vulnerability in the 802.1x multiple-authentication (multi-auth) feature of Cisco IOS Software could allow an unauthenticated, adjacent attacker to bypass the authentication phase on an 802.1x multi-auth port. The vulnerability is due to a logic change error introduced into the code. An attacker could exploit this vulnerability by trying to access an 802.1x multi-auth port after a successful supplicant has authenticated. An exploit could allow the attacker to bypass the 802.1x access controls and obtain access to the network. Cisco Bug IDs: CSCvg69701.
File data ot_500318.nasl| Vendor | Product | Version | CPE |
|---|---|---|---|
| cisco | ios | 15.4(3)m6 | cpe:2.3:o:cisco:ios:15.4\(3\)m6:*:*:*:*:*:*:* |
| cisco | ios | 15.4(3)m6a | cpe:2.3:o:cisco:ios:15.4\(3\)m6a:*:*:*:*:*:*:* |
| cisco | ios | 15.4(3)m7 | cpe:2.3:o:cisco:ios:15.4\(3\)m7:*:*:*:*:*:*:* |
| cisco | ios | 15.4(3)m7a | cpe:2.3:o:cisco:ios:15.4\(3\)m7a:*:*:*:*:*:*:* |
| cisco | ios | 15.4(3)m8 | cpe:2.3:o:cisco:ios:15.4\(3\)m8:*:*:*:*:*:*:* |
| cisco | ios | 15.4(3.0i)m6 | cpe:2.3:o:cisco:ios:15.4\(3.0i\)m6:*:*:*:*:*:*:* |
| cisco | ios | 15.5(3)m3 | cpe:2.3:o:cisco:ios:15.5\(3\)m3:*:*:*:*:*:*:* |
| cisco | ios | 15.5(3)m4 | cpe:2.3:o:cisco:ios:15.5\(3\)m4:*:*:*:*:*:*:* |
| cisco | ios | 15.5(3)m4a | cpe:2.3:o:cisco:ios:15.5\(3\)m4a:*:*:*:*:*:*:* |
| cisco | ios | 15.5(3)m4b | cpe:2.3:o:cisco:ios:15.5\(3\)m4b:*:*:*:*:*:*:* |
Related
cisco
cisco
nvd
nvd
CVE-2018-0163
2018-03-28 22:29:00
nessus
nessus
prion
prion
Authentication flaw
2018-03-28 22:29:00
cvelist
cvelist
CVE-2018-0163
2018-03-28 22:00:00
cve
cve
CVE-2018-0163
2018-03-28 22:29:00