exploitDog

CVE-2001-1065

Опубликовано: 31 авг. 2001

Источник: nvd

CVSS2: 5

EPSS Низкий

Описание

Web-based configuration utility in Cisco 600 series routers running CBOS 2.0.1 through 2.4.2ap binds itself to port 80 even when web-based configuration services are disabled, which could leave the router open to attack.

Ссылки

http://www.cisco.com/warp/public/707/cisco-cbos-webserver-pub.shtml
Patch
Vendor Advisory
https://exchange.xforce.ibmcloud.com/vulnerabilities/7027
http://www.cisco.com/warp/public/707/cisco-cbos-webserver-pub.shtml
Patch
Vendor Advisory
https://exchange.xforce.ibmcloud.com/vulnerabilities/7027

Уязвимые конфигурации

Конфигурация 1

Одно из

cpe:2.3:o:cisco:cbos:*:*:*:*:*:*:*:*

Версия до 2.4.2ap (включая)

cpe:2.3:o:cisco:cbos:2.0.1:*:*:*:*:*:*:*

EPSS

Процентиль: 64%

0.00481

Низкий

5 Medium

CVSS2

Дефекты

NVD-CWE-Other

Связанные уязвимости

GHSA-53qc-j5xc-mw4f

github

больше 3 лет назад

Web-based configuration utility in Cisco 600 series routers running CBOS 2.0.1 through 2.4.2ap binds itself to port 80 even when web-based configuration services are disabled, which could leave the router open to attack.

EPSS

Процентиль: 64%

0.00481

Низкий

5 Medium

CVSS2

Дефекты

NVD-CWE-Other