CVE-2007-0968

3 documents3 sources

Severity

9.0CRITICAL

EPSS

2.0%

top 16.44%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Cisco Firewall Services Module

Timeline

PublishedFeb 16

Latest updateMay 1

Description

Unspecified vulnerability in Cisco Firewall Services Module (FWSM) before 2.3(4.7) and 3.x before 3.1(3.1) causes the access control entries (ACE) in an ACL to be improperly evaluated, which allows remote authenticated users to bypass intended certain ACL protections.

CVSS vector

AV:N/AC:L/C:C/I:C/A:CExploitability: 8.0 | Impact: 10.0

Affected Packages1 packages

▶NVDcisco/firewall_services_module2.3, 3.1+1

Patches

Patch: www.cisco.com ↗Patch: www.cisco.com ↗

🔴Vulnerability Details

GHSA

GHSA-jg6c-x8jv-83xc: Unspecified vulnerability in Cisco Firewall Services Module (FWSM) before 2↗2022-05-01

▶

CVEList

CVE-2007-0968: Unspecified vulnerability in Cisco Firewall Services Module (FWSM) before 2↗2007-02-16

▶