CVE-2009-0742

2009-02-2616:00:00

mitre

www.cve.org

cisco ace

cleartext password

sensitive information

AI Score

6.6

Confidence

Low

EPSS

0.001

Percentile

48.6%

JSON

The username command in Cisco ACE Application Control Engine Module for Catalyst 6500 Switches and 7600 Routers and Cisco ACE 4710 Application Control Engine Appliance stores a cleartext password by default, which allows context-dependent attackers to obtain sensitive information.

References

www.cisco.com/en/US/products/products_security_advisory09186a0080a7bc82.shtml