Описание
The Transaction Language 1 (TL1) login interface in Cisco ONS 15327 4.6(0) and 4.6(1) and 15454 and 15454 SDH 4.6(0) and 4.6(1), when a user account is configured with a blank password, allows remote attackers to gain unauthorized access by logging in with a password larger than 10 characters.
Ссылки
- Vendor Advisory
- Third Party AdvisoryUS Government Resource
- Vendor Advisory
- Third Party AdvisoryUS Government Resource
Уязвимые конфигурации
Конфигурация 1
Одно из
cpe:2.3:a:cisco:optical_networking_systems_software:1.0:*:*:*:*:*:*:*
cpe:2.3:a:cisco:optical_networking_systems_software:1.1:*:*:*:*:*:*:*
cpe:2.3:a:cisco:optical_networking_systems_software:1.1\(0\):*:*:*:*:*:*:*
cpe:2.3:a:cisco:optical_networking_systems_software:1.1\(1\):*:*:*:*:*:*:*
cpe:2.3:a:cisco:optical_networking_systems_software:1.3\(0\):*:*:*:*:*:*:*
cpe:2.3:a:cisco:optical_networking_systems_software:2.3\(5\):*:*:*:*:*:*:*
cpe:2.3:a:cisco:optical_networking_systems_software:3.0:*:*:*:*:*:*:*
cpe:2.3:a:cisco:optical_networking_systems_software:3.1.0:*:*:*:*:*:*:*
cpe:2.3:a:cisco:optical_networking_systems_software:3.2:*:*:*:*:*:*:*
cpe:2.3:a:cisco:optical_networking_systems_software:3.2.0:*:*:*:*:*:*:*
cpe:2.3:a:cisco:optical_networking_systems_software:3.3.0:*:*:*:*:*:*:*
cpe:2.3:a:cisco:optical_networking_systems_software:3.4.0:*:*:*:*:*:*:*
cpe:2.3:a:cisco:optical_networking_systems_software:4.0\(0\):*:*:*:*:*:*:*
cpe:2.3:a:cisco:optical_networking_systems_software:4.0\(1\):*:*:*:*:*:*:*
cpe:2.3:a:cisco:optical_networking_systems_software:4.0\(2\):*:*:*:*:*:*:*
cpe:2.3:a:cisco:optical_networking_systems_software:4.0.0:*:*:*:*:*:*:*
cpe:2.3:a:cisco:optical_networking_systems_software:4.1\(0\):*:*:*:*:*:*:*
cpe:2.3:a:cisco:optical_networking_systems_software:4.1\(1\):*:*:*:*:*:*:*
cpe:2.3:a:cisco:optical_networking_systems_software:4.1\(2\):*:*:*:*:*:*:*
cpe:2.3:a:cisco:optical_networking_systems_software:4.1\(3\):*:*:*:*:*:*:*
cpe:2.3:a:cisco:optical_networking_systems_software:4.5:*:*:*:*:*:*:*
cpe:2.3:a:cisco:optical_networking_systems_software:4.6\(0\):*:*:*:*:*:*:*
cpe:2.3:a:cisco:optical_networking_systems_software:4.6\(1\):*:*:*:*:*:*:*
EPSS
Процентиль: 78%
0.01191
Низкий
7.5 High
CVSS2
Дефекты
NVD-CWE-Other
Связанные уязвимости
github
больше 3 лет назад
The Transaction Language 1 (TL1) login interface in Cisco ONS 15327 4.6(0) and 4.6(1) and 15454 and 15454 SDH 4.6(0) and 4.6(1), when a user account is configured with a blank password, allows remote attackers to gain unauthorized access by logging in with a password larger than 10 characters.
EPSS
Процентиль: 78%
0.01191
Низкий
7.5 High
CVSS2
Дефекты
NVD-CWE-Other