CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2015-0694

Cisco ASR 9000 devices with software 5.3.0.BASE do not recognize that certain ACL entries have a single-host constraint, which allows remote attackers to bypass intended network-resource access restrictions by using an address that was not supposed to have been allowed, aka Bug ID CSCur28806.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.004

EPSS Ranking 57.6%

CVSS Severity

CVSS v2 Score 5.0

References

http://tools.cisco.com/security/center/viewAlert.x?alertId=38292
http://www.securitytracker.com/id/1032059
http://tools.cisco.com/security/center/viewAlert.x?alertId=38292
http://www.securitytracker.com/id/1032059

Products affected by CVE-2015-0694

Cisco » Asr 9001 » Version: N/A

cpe:2.3:h:cisco:asr_9001:-
Cisco » Asr 9006 » Version: N/A

cpe:2.3:h:cisco:asr_9006:-
Cisco » Asr 9010 » Version: N/A

cpe:2.3:h:cisco:asr_9010:-
Cisco » Asr 9904 » Version: N/A

cpe:2.3:h:cisco:asr_9904:-
Cisco » Asr 9912 » Version: N/A

cpe:2.3:h:cisco:asr_9912:-
Cisco » Asr 9922 » Version: N/A

cpe:2.3:h:cisco:asr_9922:-
Cisco » Ios Xr » Version: 5.3.0_base

cpe:2.3:o:cisco:ios_xr:5.3.0_base

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2015-0694

Products

Pricing

Contact Us