Lucene search

[email protected]NVD:CVE-2008-1155

HistoryApr 16, 2008 - 5:05 p.m.

CVE-2008-1155

2008-04-1617:05:00

CWE-200

[email protected]

web.nvd.nist.gov

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:C/I:C/A:C

AI Score

6.6

Confidence

Low

EPSS

0.019

Percentile

88.8%

JSON

Cisco Network Admission Control (NAC) Appliance 3.5.x, 3.6.x before 3.6.4.4, 4.0.x before 4.0.6, and 4.1.x before 4.1.2 allows remote attackers to obtain the shared secret for the Clean Access Server (CAS) and Clean Access Manager (CAM) by sniffing error logs.

Affected configurations

Nvd

Node

cisconetwork_admission_controlRange≤3.6.4.3

cisconetwork_admission_controlRange≤4.0.5.1

cisconetwork_admission_controlRange≤4.1.1

cisconetwork_admission_controlMatch3.5

cisconetwork_admission_controlMatch3.6

cisconetwork_admission_controlMatch3.6.0

cisconetwork_admission_controlMatch3.6.0.1

cisconetwork_admission_controlMatch3.6.1.1

cisconetwork_admission_controlMatch3.6.2.1

cisconetwork_admission_controlMatch3.6.2.2

cisconetwork_admission_controlMatch3.6.4.1

cisconetwork_admission_controlMatch3.6.4.2

cisconetwork_admission_controlMatch4.0

cisconetwork_admission_controlMatch4.0.0.1

cisconetwork_admission_controlMatch4.0.2.1

cisconetwork_admission_controlMatch4.0.2.2

cisconetwork_admission_controlMatch4.0.3.1

cisconetwork_admission_controlMatch4.0.3.2

cisconetwork_admission_controlMatch4.0.3.3

cisconetwork_admission_controlMatch4.0.5.0

cisconetwork_admission_controlMatch4.1

cisconetwork_admission_controlMatch4.1.0

VendorProductVersionCPE
cisconetwork_admission_control*cpe:2.3:a:cisco:network_admission_control:*:*:*:*:*:*:*:*
cisconetwork_admission_control3.5cpe:2.3:a:cisco:network_admission_control:3.5:*:*:*:*:*:*:*
cisconetwork_admission_control3.6cpe:2.3:a:cisco:network_admission_control:3.6:*:*:*:*:*:*:*
cisconetwork_admission_control3.6.0cpe:2.3:a:cisco:network_admission_control:3.6.0:*:*:*:*:*:*:*
cisconetwork_admission_control3.6.0.1cpe:2.3:a:cisco:network_admission_control:3.6.0.1:*:*:*:*:*:*:*
cisconetwork_admission_control3.6.1.1cpe:2.3:a:cisco:network_admission_control:3.6.1.1:*:*:*:*:*:*:*
cisconetwork_admission_control3.6.2.1cpe:2.3:a:cisco:network_admission_control:3.6.2.1:*:*:*:*:*:*:*
cisconetwork_admission_control3.6.2.2cpe:2.3:a:cisco:network_admission_control:3.6.2.2:*:*:*:*:*:*:*
cisconetwork_admission_control3.6.4.1cpe:2.3:a:cisco:network_admission_control:3.6.4.1:*:*:*:*:*:*:*
cisconetwork_admission_control3.6.4.2cpe:2.3:a:cisco:network_admission_control:3.6.4.2:*:*:*:*:*:*:*

Vendor	Product	Version	CPE
cisco	network_admission_control	*	cpe:2.3:a:cisco:network_admission_control::::::::
cisco	network_admission_control	3.5	cpe:2.3:a:cisco:network_admission_control:3.5:::::::*
cisco	network_admission_control	3.6	cpe:2.3:a:cisco:network_admission_control:3.6:::::::*
cisco	network_admission_control	3.6.0	cpe:2.3:a:cisco:network_admission_control:3.6.0:::::::*
cisco	network_admission_control	3.6.0.1	cpe:2.3:a:cisco:network_admission_control:3.6.0.1:::::::*
cisco	network_admission_control	3.6.1.1	cpe:2.3:a:cisco:network_admission_control:3.6.1.1:::::::*
cisco	network_admission_control	3.6.2.1	cpe:2.3:a:cisco:network_admission_control:3.6.2.1:::::::*
cisco	network_admission_control	3.6.2.2	cpe:2.3:a:cisco:network_admission_control:3.6.2.2:::::::*
cisco	network_admission_control	3.6.4.1	cpe:2.3:a:cisco:network_admission_control:3.6.4.1:::::::*
cisco	network_admission_control	3.6.4.2	cpe:2.3:a:cisco:network_admission_control:3.6.4.2:::::::*