CVE-2007-5651

3 documents3 sources

Severity

7.1HIGH

EPSS

1.2%

top 21.18%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Cisco Catos Cisco IOS

Timeline

PublishedOct 23

Latest updateMay 1

Description

Unspecified vulnerability in the Extensible Authentication Protocol (EAP) implementation in Cisco IOS 12.3 and 12.4 on Cisco Access Points and 1310 Wireless Bridges (Wireless EAP devices), IOS 12.1 and 12.2 on Cisco switches (Wired EAP devices), and CatOS 6.x through 8.x on Cisco switches allows remote attackers to cause a denial of service (device reload) via a crafted EAP Response Identity packet.

CVSS vector

AV:N/AC:M/C:N/I:N/A:CExploitability: 8.6 | Impact: 6.9

Affected Packages2 packages

▶NVDcisco/catos15 versions+14

▶NVDcisco/ios7 versions+6

🔴Vulnerability Details

GHSA

GHSA-vpm4-hxj3-qv62: Unspecified vulnerability in the Extensible Authentication Protocol (EAP) implementation in Cisco IOS 12↗2022-05-01

▶

CVEList

CVE-2007-5651: Unspecified vulnerability in the Extensible Authentication Protocol (EAP) implementation in Cisco IOS 12↗2007-10-23

▶