CVE-2004-0308

3 documents3 sources

Severity

10.0CRITICAL

EPSS

0.4%

top 38.23%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Cisco Optical Networking Systems Software

Timeline

PublishedNov 24

Latest updateApr 29

Description

Unknown vulnerability in Cisco ONS 15327 before 4.1(3), ONS 15454 before 4.6(1), ONS 15454 SD before 4.1(3), and Cisco ONS15600 before 1.3(0) allows a superuser whose account is locked out, disabled, or suspended to gain unauthorized access via a Telnet connection to the VxWorks shell.

CVSS vector

AV:N/AC:L/C:C/I:C/A:CExploitability: 10.0 | Impact: 10.0

Affected Packages1 packages

▶NVDcisco/optical_networking_systems_software10 versions+9

Patches

Patch: www.cisco.com ↗Patch: www.securityfocus.com ↗Patch: www.cisco.com ↗

🔴Vulnerability Details

GHSA

GHSA-xvrf-gvhf-wxf6: Unknown vulnerability in Cisco ONS 15327 before 4↗2022-04-29

▶

CVEList

CVE-2004-0308: Unknown vulnerability in Cisco ONS 15327 before 4↗2004-03-18

▶