Описание
Cisco Catalyst 6500 and Cisco 7600 series devices use 127/8 IP addresses for Ethernet Out-of-Band Channel (EOBC) internal communication, which might allow remote attackers to send packets to an interface for which network exposure was unintended.
Ссылки
- Patch
- Exploit
- Patch
- Exploit
Уязвимые конфигурации
Конфигурация 1
Одно из
cpe:2.3:h:cisco:catalyst_6500:*:*:*:*:*:*:*:*
cpe:2.3:h:cisco:catalyst_6500_ws-svc-nam-1:2.2\(1a\):*:*:*:*:*:*:*
cpe:2.3:h:cisco:catalyst_6500_ws-svc-nam-1:3.1\(1a\):*:*:*:*:*:*:*
cpe:2.3:h:cisco:catalyst_6500_ws-svc-nam-2:2.2\(1a\):*:*:*:*:*:*:*
cpe:2.3:h:cisco:catalyst_6500_ws-svc-nam-2:3.1\(1a\):*:*:*:*:*:*:*
cpe:2.3:h:cisco:catalyst_6500_ws-x6380-nam:2.1\(2\):*:*:*:*:*:*:*
cpe:2.3:h:cisco:catalyst_6500_ws-x6380-nam:3.1\(1a\):*:*:*:*:*:*:*
cpe:2.3:h:cisco:catalyst_7600:*:*:*:*:*:*:*:*
cpe:2.3:h:cisco:catalyst_7600:*:*:sup2_msfc2:*:*:*:*:*
cpe:2.3:h:cisco:catalyst_7600:*:*:sup720_msfc3:*:*:*:*:*
cpe:2.3:h:cisco:catalyst_7600_ws-svc-nam-1:2.2\(1a\):*:*:*:*:*:*:*
cpe:2.3:h:cisco:catalyst_7600_ws-svc-nam-1:3.1\(1a\):*:*:*:*:*:*:*
cpe:2.3:h:cisco:catalyst_7600_ws-svc-nam-2:2.2\(1a\):*:*:*:*:*:*:*
cpe:2.3:h:cisco:catalyst_7600_ws-svc-nam-2:3.1\(1a\):*:*:*:*:*:*:*
cpe:2.3:h:cisco:catalyst_7600_ws-x6380-nam:2.1\(2\):*:*:*:*:*:*:*
cpe:2.3:h:cisco:catalyst_7600_ws-x6380-nam:3.1\(1a\):*:*:*:*:*:*:*
cpe:2.3:o:cisco:catos:5.4\(1\):*:*:*:*:*:*:*
cpe:2.3:o:cisco:catos:7.5\(1\):*:*:*:*:*:*:*
cpe:2.3:o:cisco:catos:7.6\(1\):*:*:*:*:*:*:*
EPSS
Процентиль: 71%
0.00678
Низкий
5 Medium
CVSS2
Дефекты
CWE-264
Связанные уязвимости
github
почти 4 года назад
Cisco Catalyst 6500 and Cisco 7600 series devices use 127/8 IP addresses for Ethernet Out-of-Band Channel (EOBC) internal communication, which might allow remote attackers to send packets to an interface for which network exposure was unintended.
EPSS
Процентиль: 71%
0.00678
Низкий
5 Medium
CVSS2
Дефекты
CWE-264