CVE-2007-5570

CWE-20 — Improper Input Validation CWE-3994 documents4 sources

Severity

7.8HIGH

EPSS

2.1%

top 15.91%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Cisco Firewall Services Module

Timeline

PublishedOct 18

Latest updateMay 1

Description

Cisco Firewall Services Module (FWSM) 3.2(1), and 3.1(5) and earlier, allows remote attackers to cause a denial of service (device reload) via a crafted HTTPS request, aka CSCsi77844.

CVSS vector

AV:N/AC:L/C:N/I:N/A:CExploitability: 10.0 | Impact: 6.9

Affected Packages1 packages

▶NVDcisco/firewall_services_module3.1 — 3.1\(5\)+1

🔴Vulnerability Details

GHSA

GHSA-39hh-ghcg-pg9w: Cisco Firewall Services Module (FWSM) 3↗2022-05-01

▶

CVEList

CVE-2007-5570: Cisco Firewall Services Module (FWSM) 3↗2007-10-18

▶

📋Vendor Advisories

Cisco

Multiple Vulnerabilities in Firewall Services Module↗2007-10-17

▶