exploitDog

CVE-2009-0621

Опубликовано: 26 фев. 2009

Источник: nvd

CVSS2: 10

EPSS Низкий

Описание

Cisco ACE 4710 Application Control Engine Appliance before A1(8a) uses default (1) usernames and (2) passwords for (a) the administrator, (b) web management, and (c) device management, which makes it easier for remote attackers to perform configuration changes to the Device Manager and other components, or obtain operating-system access.

Ссылки

http://www.cisco.com/en/US/products/products_security_advisory09186a0080a7bc82.shtml
Patch
Vendor Advisory
http://www.securityfocus.com/bid/33900
http://www.cisco.com/en/US/products/products_security_advisory09186a0080a7bc82.shtml
Patch
Vendor Advisory
http://www.securityfocus.com/bid/33900

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:h:cisco:ace_4710:*:*:*:*:*:*:*:*

EPSS

Процентиль: 63%

0.00458

Низкий

10 Critical

CVSS2

Дефекты

CWE-16

Связанные уязвимости

GHSA-w25f-3mhv-pm3v

github

почти 4 года назад

Cisco ACE 4710 Application Control Engine Appliance before A1(8a) uses default (1) usernames and (2) passwords for (a) the administrator, (b) web management, and (c) device management, which makes it easier for remote attackers to perform configuration changes to the Device Manager and other components, or obtain operating-system access.

EPSS

Процентиль: 63%

0.00458

Низкий

10 Critical

CVSS2

Дефекты

CWE-16