CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2015-6366

Cisco IOS 15.2(04)M6 and 15.4(03)S lets physical-interface ACLs supersede tunnel-interface ACLs, which allows remote attackers to bypass intended network-traffic restrictions in opportunistic circumstances by using a tunnel, aka Bug ID CSCur01042.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.004

EPSS Ranking 57.8%

CVSS Severity

CVSS v2 Score 5.0

References

http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20151112-ios2
http://www.securitytracker.com/id/1034141
http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20151112-ios2
http://www.securitytracker.com/id/1034141

Products affected by CVE-2015-6366

Cisco » Ios » Version: 15.2(4)m6

cpe:2.3:o:cisco:ios:15.2(4)m6
Cisco » Ios » Version: 15.4(3)s

cpe:2.3:o:cisco:ios:15.4(3)s

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2015-6366

Products

Pricing

Contact Us