Описание
Cisco ASR 5000 devices with software 18.3 through 20.0.0 allow remote attackers to make configuration changes over SNMP by leveraging knowledge of the read-write community, aka Bug ID CSCuz29526.
Ссылки
- Vendor Advisory
- Vendor Advisory
Уязвимые конфигурации
Конфигурация 1
Одновременно
cpe:2.3:h:cisco:asr_5000:-:*:*:*:*:*:*:*
Одно из
cpe:2.3:a:cisco:asr_5000_software:18.3.0:*:*:*:*:*:*:*
cpe:2.3:a:cisco:asr_5000_software:18.3_base:*:*:*:*:*:*:*
cpe:2.3:a:cisco:asr_5000_software:19.0.1:*:*:*:*:*:*:*
cpe:2.3:a:cisco:asr_5000_software:19.0.m0.60737:*:*:*:*:*:*:*
cpe:2.3:a:cisco:asr_5000_software:19.0.m0.60828:*:*:*:*:*:*:*
cpe:2.3:a:cisco:asr_5000_software:19.0.m0.61045:*:*:*:*:*:*:*
cpe:2.3:a:cisco:asr_5000_software:19.1.0:*:*:*:*:*:*:*
cpe:2.3:a:cisco:asr_5000_software:19.1.0.61559:*:*:*:*:*:*:*
cpe:2.3:a:cisco:asr_5000_software:19.2.0:*:*:*:*:*:*:*
cpe:2.3:a:cisco:asr_5000_software:19.3.0:*:*:*:*:*:*:*
cpe:2.3:a:cisco:asr_5000_software:20.0.0:*:*:*:*:*:*:*
EPSS
Процентиль: 50%
0.00265
Низкий
6.5 Medium
CVSS3
6.4 Medium
CVSS2
Дефекты
CWE-200
Связанные уязвимости
CVSS3: 6.5
github
больше 3 лет назад
Cisco ASR 5000 devices with software 18.3 through 20.0.0 allow remote attackers to make configuration changes over SNMP by leveraging knowledge of the read-write community, aka Bug ID CSCuz29526.
EPSS
Процентиль: 50%
0.00265
Низкий
6.5 Medium
CVSS3
6.4 Medium
CVSS2
Дефекты
CWE-200