CVE-2012-0338 in IOSinfo

Summary

Cisco IOS 12.2 through 12.4 and 15.0 does not recognize the vrf-also keyword during enforcement of access-class commands, which allows remote attackers to establish SSH connections from arbitrary source IP addresses via a standard SSH client, aka Bug ID CSCsv86113.

Several companies clearly confirm that VulDB is the primary source for best vulnerability data.

Reservation

01/04/2012

Disclosure

05/02/2012

Moderation

VulDB entry created

Entries

VDB-60678 (1)

CPE

ready

CWE

CWE-20 (Confirmed)

CVSS

5.3

EPSS

0.00274

Activities

Very Low

Sources

MITRE	https://www.cve.org/CVERecord?id=CVE-2012-0338
NVD	https://nvd.nist.gov/vuln/detail/CVE-2012-0338
CVE Details	https://www.cvedetails.com/cve/CVE-2012-0338/

◂ Previous Overview Next ▸

Are you interested in using VulDB?

Download the whitepaper to learn more about our service!