Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
cvelistCiscoCVELIST:CVE-2015-0607
HistoryMar 06, 2015 - 2:00 a.m.

CVE-2015-0607

2015-03-0602:00:00
cisco
www.cve.org
3

AI Score

6.8

Confidence

Low

EPSS

0.004

Percentile

72.6%

JSON

The Authentication Proxy feature in Cisco IOS does not properly handle invalid AAA return codes from RADIUS and TACACS+ servers, which allows remote attackers to bypass authentication in opportunistic circumstances via a connection attempt that triggers an invalid code, as demonstrated by a connection attempt with a blank password, aka Bug IDs CSCuo09400 and CSCun16016.

Related

prion 2
nvd 2
cisco 1
cve 2
prion
prion
Authentication flaw
2015-03-06 03:00:00
Design/Logic Flaw
2015-02-27 02:59:00
nvd
nvd
CVE-2015-0607
2015-03-06 03:00:13
CVE-2014-2188
2015-02-27 02:59:00
cisco
cisco
Cisco IOS Software Authentication Proxy Bypass Vulnerability
2015-03-03 21:56:08
cve
cve
CVE-2015-0607
2015-03-06 03:00:13
CVE-2014-2188
2015-02-27 02:59:00

AI Score

6.8

Confidence

Low

EPSS

0.004

Percentile

72.6%

JSON
Related for CVELIST:CVE-2015-0607
prion2nvd2cisco1cve2