7.8

CVE-2007-2688

The Cisco Intrusion Prevention System (IPS) and IOS with Firewall/IPS Feature Set do not properly handle certain full-width and half-width Unicode character encodings, which might allow remote attackers to evade detection of HTTP traffic.

Data is provided by the National Vulnerability Database (NVD)
CiscoIps Sensor Software Version4.0
CiscoIos Version10.0
CiscoIos Version11.1cc
CiscoIos Version11.3
CiscoIos Version12.0
CiscoIos Version12.0s
CiscoIos Version12.0st
CiscoIos Version12.0t
CiscoIos Version12.1
CiscoIos Version12.1e
CiscoIos Version12.1t
CiscoIos Version12.2
CiscoIos Version12.2t
Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.
EPSS Metriken
Type Source Score Percentile
EPSS FIRST.org 3.82% 0.87
CVSS Metriken
Source Base Score Exploit Score Impact Score Vector string
nvd@nist.gov 7.8 10 6.9
AV:N/AC:L/Au:N/C:N/I:N/A:C