6.8
CVE-2006-4312
- EPSS 0.32%
- Veröffentlicht 23.08.2006 22:04:00
- Zuletzt bearbeitet 16.06.2026 22:28:50
- Quelle cve@mitre.org
- CVE-Watchlists
- Unerledigt
Cisco PIX 500 Series Security Appliances and ASA 5500 Series Adaptive Security Appliances, when running 7.0(x) up to 7.0(5) and 7.1(x) up to 7.1(2.4), and Firewall Services Module (FWSM) 3.1(x) up to 3.1(1.6), causes the EXEC password, local user passwords, and the enable password to be changed to a "non-random value" under certain circumstances, which causes administrators to be locked out and might allow attackers to gain access.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
| Typ | Quelle | Score | Percentile |
|---|---|---|---|
| EPSS | FIRST.org | 0.32% | 0.236 |
| Quelle | Base Score | Exploit Score | Impact Score | Vector String |
|---|---|---|---|---|
| nvd@nist.gov | 6.8 | 3.1 | 10 |
AV:L/AC:L/Au:S/C:C/I:C/A:C
|
http://secunia.com/advisories/21616
http://securitytracker.com/id?1016738
http://securitytracker.com/id?1016739
http://securitytracker.com/id?1016740
http://www.cisco.com/warp/public/707/cisco-sa-20060823-firewall.shtml
http://www.osvdb.org/28143
http://www.securityfocus.com/bid/19681
http://www.vupen.com/english/advisories/2006/3367
https://exchange.xforce.ibmcloud.com/vulnerabilities/28540