10
CVE-2007-2282
- EPSS 4.73%
- Veröffentlicht 26.04.2007 19:19:00
- Zuletzt bearbeitet 16.06.2026 22:39:17
- Quelle cve@mitre.org
- CVE-Watchlists
- Unerledigt
Cisco Network Services (CNS) NetFlow Collection Engine (NFC) before 6.0 has an nfcuser account with the default password nfcuser, which allows remote attackers to modify the product configuration and, when installed on Linux, obtain login access to the host operating system.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
Cisco ≫ Netflow Collection Engine Version1.0
Cisco ≫ Netflow Collection Engine Version2.0
Cisco ≫ Netflow Collection Engine Version3.0
Cisco ≫ Netflow Collection Engine Version3.5
Cisco ≫ Netflow Collection Engine Version3.6
Cisco ≫ Netflow Collection Engine Version4.0
Cisco ≫ Netflow Collection Engine Version5.0
Cisco ≫ Netflow Collection Engine Version5.0.3
| Typ | Quelle | Score | Percentile |
|---|---|---|---|
| EPSS | FIRST.org | 4.73% | 0.907 |
| Quelle | Base Score | Exploit Score | Impact Score | Vector String |
|---|---|---|---|---|
| nvd@nist.gov | 10 | 10 | 10 |
AV:N/AC:L/Au:N/C:C/I:C/A:C
|
http://securitytracker.com/id?1017960
http://www.cisco.com/en/US/products/products_security_advisory09186a008082c520.shtml
http://www.kb.cert.org/vuls/id/127545
http://www.osvdb.org/35524
http://www.securityfocus.com/bid/23647
http://www.vupen.com/english/advisories/2007/1545
https://exchange.xforce.ibmcloud.com/vulnerabilities/33861