10
CVE-2007-1257
- EPSS 6.81%
- Veröffentlicht 03.03.2007 20:19:00
- Zuletzt bearbeitet 16.06.2026 22:37:14
- Quelle cve@mitre.org
- CVE-Watchlists
- Unerledigt
The Network Analysis Module (NAM) in Cisco Catalyst Series 6000, 6500, and 7600 allows remote attackers to execute arbitrary commands via certain SNMP packets that are spoofed from the NAM's own IP address.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
| Typ | Quelle | Score | Percentile |
|---|---|---|---|
| EPSS | FIRST.org | 6.81% | 0.932 |
| Quelle | Base Score | Exploit Score | Impact Score | Vector String |
|---|---|---|---|---|
| nvd@nist.gov | 10 | 10 | 10 |
AV:N/AC:L/Au:N/C:C/I:C/A:C
|
CWE-20 Improper Input Validation
The product receives input or data, but it does not validate or incorrectly validates that the input has the properties that are required to process the data safely and correctly.
http://osvdb.org/33066
http://secunia.com/advisories/24344
http://www.cisco.com/warp/public/707/cisco-sa-20070228-nam.shtml
http://www.kb.cert.org/vuls/id/472412
http://www.securityfocus.com/bid/22751
http://www.securitytracker.com/id?1017710
http://www.vupen.com/english/advisories/2007/0783
https://exchange.xforce.ibmcloud.com/vulnerabilities/32750
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A5188