5.8
CVE-2012-1342
- EPSS 1.5%
- Veröffentlicht 06.08.2012 17:55:00
- Zuletzt bearbeitet 16.06.2026 23:39:24
- Quelle psirt@cisco.com
- CVE-Watchlists
- Unerledigt
Cisco Carrier Routing System (CRS) 3.9, 4.0, and 4.1 allows remote attackers to bypass ACL entries via fragmented packets, aka Bug ID CSCtj10975.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
Cisco ≫ Carrier Routing System Version3.9.0
Cisco ≫ Carrier Routing System Version4.0.0
Cisco ≫ Carrier Routing System Version4.1.0
| Typ | Quelle | Score | Percentile |
|---|---|---|---|
| EPSS | FIRST.org | 1.5% | 0.709 |
| Quelle | Base Score | Exploit Score | Impact Score | Vector String |
|---|---|---|---|---|
| nvd@nist.gov | 5.8 | 3.9 | 1.4 |
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:N/I:L/A:N
|
| nvd@nist.gov | 5 | 10 | 2.9 |
AV:N/AC:L/Au:N/C:N/I:P/A:N
|
CWE-863 Incorrect Authorization
The product performs an authorization check when an actor attempts to access a resource or perform an action, but it does not correctly perform the check.
http://www.cisco.com/cisco/software/release.html?mdfid=279506669&catid=268437899&flowid=1915&reltype=all&relind=AVAILABLE&release=3.9.2&softwareid=280867577