- Description
- Vulnerability in Cisco routers versions 8.2 through 9.1 allows remote attackers to bypass access control lists when extended IP access lists are used on certain interfaces, the IP route cache is enabled, and the access list uses the "established" keyword.
- Source
- cve@mitre.org
- NVD status
- Modified
CVSS 2.0
- Type
- Primary
- Base score
- 7.5
- Impact score
- 6.4
- Exploitability score
- 10
- Vector string
- AV:N/AC:L/Au:N/C:P/I:P/A:P
- Hype score
- Not currently trending
[
{
"nodes": [
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:o:cisco:ios:8.2:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "E72B3032-154D-45C2-8380-CCB28E4F2E8C"
},
{
"criteria": "cpe:2.3:o:cisco:ios:8.3:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "87395248-5E9C-4257-9CC7-2E2805B69F83"
},
{
"criteria": "cpe:2.3:o:cisco:ios:9.0:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "A476BFB0-E587-41A6-B691-2609E0146C2B"
},
{
"criteria": "cpe:2.3:o:cisco:ios:9.1:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "2E9A00D5-A594-4C64-B982-10CB4C554F51"
}
],
"operator": "OR"
}
]
}
]