Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
nvd[email protected]NVD:CVE-2009-2862
HistorySep 28, 2009 - 7:30 p.m.

CVE-2009-2862

2009-09-2819:30:01
[email protected]
web.nvd.nist.gov
4

CVSS2

4.3

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

NONE

AV:N/AC:M/Au:N/C:P/I:N/A:N

AI Score

6.7

Confidence

Low

EPSS

0.004

Percentile

72.0%

JSON

The Object Groups for Access Control Lists (ACLs) feature in Cisco IOS 12.2XNB, 12.2XNC, 12.2XND, 12.4MD, 12.4T, 12.4XZ, and 12.4YA allows remote attackers to bypass intended access restrictions via crafted requests, aka Bug IDs CSCsx07114, CSCsu70214, CSCsw47076, CSCsv48603, CSCsy54122, and CSCsu50252.

Affected configurations

Nvd
Node
ciscoiosMatch12.2xnb
OR
ciscoiosMatch12.2xnc
OR
ciscoiosMatch12.2xnd
OR
ciscoiosMatch12.4md
OR
ciscoiosMatch12.4t
OR
ciscoiosMatch12.4xz
OR
ciscoiosMatch12.4ya
VendorProductVersionCPE
ciscoios12.2xnbcpe:2.3:o:cisco:ios:12.2xnb:*:*:*:*:*:*:*
ciscoios12.2xnccpe:2.3:o:cisco:ios:12.2xnc:*:*:*:*:*:*:*
ciscoios12.2xndcpe:2.3:o:cisco:ios:12.2xnd:*:*:*:*:*:*:*
ciscoios12.4mdcpe:2.3:o:cisco:ios:12.4md:*:*:*:*:*:*:*
ciscoios12.4tcpe:2.3:o:cisco:ios:12.4t:*:*:*:*:*:*:*
ciscoios12.4xzcpe:2.3:o:cisco:ios:12.4xz:*:*:*:*:*:*:*
ciscoios12.4yacpe:2.3:o:cisco:ios:12.4ya:*:*:*:*:*:*:*

Related

cvelist 1
cisco 1
securityvulns 2
nessus 1
prion 1
cve 1
cvelist
cvelist
CVE-2009-2862
2009-09-28 18:20:00
cisco
cisco
Cisco IOS Software Object-group Access Control List Bypass Vulnerability
2009-09-23 16:00:00
securityvulns
securityvulns
Cisco Security Advisory: Cisco IOS Software Object-group Access Control List Bypass Vulnerability
2009-09-23 00:00:00
Cisco IOS multiple security vulnerabilities
2009-09-24 00:00:00
nessus
nessus
Cisco IOS Software Object-group Access Control List Bypass Vulnerability - Cisco Systems
2010-09-01 00:00:00
prion
prion
Design/Logic Flaw
2009-09-28 19:30:00
cve
cve
CVE-2009-2862
2009-09-28 19:30:01

CVSS2

4.3

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

NONE

AV:N/AC:M/Au:N/C:P/I:N/A:N

AI Score

6.7

Confidence

Low

EPSS

0.004

Percentile

72.0%

JSON
Related for NVD:CVE-2009-2862
cvelist1cisco1securityvulns2nessus1prion1cve1