Описание
The transparent proxy feature of the Cisco Application Velocity System (AVS) 3110 5.0 and 4.0 and earlier, and 3120 5.0.0 and earlier, has a default configuration that allows remote attackers to proxy arbitrary TCP connections, aka Bug ID CSCsd32143.
Ссылки
- PatchVendor Advisory
- PatchVendor Advisory
Уязвимые конфигурации
Конфигурация 1
Одно из
cpe:2.3:h:cisco:application_velocity_system_3110:4.0:*:*:*:*:*:*:*
cpe:2.3:h:cisco:application_velocity_system_3110:5.0:*:*:*:*:*:*:*
cpe:2.3:h:cisco:application_velocity_system_3120:5.0:*:*:*:*:*:*:*
EPSS
Процентиль: 69%
0.00596
Низкий
6.4 Medium
CVSS2
Дефекты
NVD-CWE-Other
Связанные уязвимости
github
почти 4 года назад
The transparent proxy feature of the Cisco Application Velocity System (AVS) 3110 5.0 and 4.0 and earlier, and 3120 5.0.0 and earlier, has a default configuration that allows remote attackers to proxy arbitrary TCP connections, aka Bug ID CSCsd32143.
EPSS
Процентиль: 69%
0.00596
Низкий
6.4 Medium
CVSS2
Дефекты
NVD-CWE-Other