CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
AI Score
Confidence
Low
EPSS
Percentile
93.6%
Nortel CVX 1800 is installed with a default “public” community string, which allows remote attackers to read usernames and passwords and modify the CVX configuration.
Vendor | Product | Version | CPE |
---|---|---|---|
nortel | cvx_1800_multi-service_access_switch | 3.6.3 | cpe:2.3:h:nortel:cvx_1800_multi-service_access_switch:3.6.3:patch24:*:*:*:*:*:* |
nortel | cvx_1800_multi-service_access_switch | 3.6.3 | cpe:2.3:h:nortel:cvx_1800_multi-service_access_switch:3.6.3:patch25:*:*:*:*:*:* |
nortel | cvx_1800_multi-service_access_switch | 3.6.3 | cpe:2.3:h:nortel:cvx_1800_multi-service_access_switch:3.6.3:patch5:*:*:*:*:*:* |