CVE-2004-1776Cisco IOS vulnerability

4 documents3 sources
Severity
7.5HIGHNVD
EPSS
1.0%
top 22.49%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
1
Cisco IOS
Timeline
PublishedFeb 28
Latest updateApr 29

Description

Cisco IOS 12.1(3) and 12.1(3)T allows remote attackers to read and modify device configuration data via the cable-docsis read-write community string used by the Data Over Cable Service Interface Specification (DOCSIS) standard.

CVSS vector

AV:N/AC:L/C:P/I:P/A:PExploitability: 10.0 | Impact: 6.4

Affected Packages1 packages

NVDcisco/ios12.1\(3\), 12.1\(3\)t+1

Patches

Patch: www.cisco.comPatch: www.kb.cert.orgPatch: www.cisco.com

🔴Vulnerability Details

1
GHSA
GHSA-8cc7-483c-fvf3: Cisco IOS 122022-04-29

🔍Detection Rules

2
Suricata
ET SNMP Attempted UDP Access Attempt to Cisco IOS 12.1 Hidden Read/Write Community String cable-docsis2010-07-30
Suricata
ET SNMP Attempted TCP Access Attempt to Cisco IOS 12.1 Hidden Read/Write Community String cable-docsis2010-07-30
CVE-2004-1776 — Cisco IOS vulnerability | cvebase