Back to search
CVE-2012-0384
Published: Mar 29, 2012
Modified: Aug 6, 2024
PUBLISHED
Description
Cisco IOS 12.2 through 12.4 and 15.0 through 15.2 and IOS XE 2.1.x through 2.6.x and 3.1.xS before 3.1.2S, 3.2.xS through 3.4.xS before 3.4.2S, 3.5.xS before 3.5.1S, and 3.1.xSG and 3.2.xSG before 3.2.2SG, when AAA authorization is enabled, allow remote authenticated users to bypass intended access restrictions and execute commands via a (1) HTTP or (2) HTTPS session, aka Bug ID CSCtr91106.
| Vendor | Product | Versions |
|---|---|---|
n/a | n/a | affected n/a |
References
80704
vdb-entry
x_refsource_OSVDB
20120328 Cisco IOS Software Command Authorization Bypass
vendor-advisory
x_refsource_CISCO
1026860
vdb-entry
x_refsource_SECTRACK
48614
third-party-advisory
x_refsource_SECUNIA
52755
vdb-entry
x_refsource_BID
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now