CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2002-1108

Cisco Virtual Private Network (VPN) Client software 2.x.x, and 3.x before 3.6(Rel), when configured with all tunnel mode, can be forced into acknowledging a TCP packet from outside the tunnel.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.004

EPSS Ranking 59.3%

CVSS Severity

CVSS v2 Score 5.0

References

http://www.cisco.com/warp/public/707/vpnclient-multiple2-vuln-pub.shtml
http://www.securityfocus.com/bid/5651
https://exchange.xforce.ibmcloud.com/vulnerabilities/10047
http://www.cisco.com/warp/public/707/vpnclient-multiple2-vuln-pub.shtml
http://www.securityfocus.com/bid/5651
https://exchange.xforce.ibmcloud.com/vulnerabilities/10047

Products affected by CVE-2002-1108

Cisco » Vpn Client » Version: 2.0

cpe:2.3:a:cisco:vpn_client:2.0
Cisco » Vpn Client » Version: 3.0

cpe:2.3:a:cisco:vpn_client:3.0
Cisco » Vpn Client » Version: 3.0.5

cpe:2.3:a:cisco:vpn_client:3.0.5
Cisco » Vpn Client » Version: 3.1

cpe:2.3:a:cisco:vpn_client:3.1
Cisco » Vpn Client » Version: 3.5.1

cpe:2.3:a:cisco:vpn_client:3.5.1
Cisco » Vpn Client » Version: 3.5.1c

cpe:2.3:a:cisco:vpn_client:3.5.1c

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2002-1108

Products

Pricing

Contact Us