Security Advisory

CVE-2013-6979

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2013-12-23 22:00:00

Last updated 2024-08-06 17:53:45

Assigner cisco

State PUBLISHED

Description

The VTY authentication implementation in Cisco IOS XE 03.02.xxSE and 03.03.xxSE incorrectly relies on the Linux-IOS internal-network configuration, which allows remote attackers to bypass authentication by leveraging access to a 192.168.x.2 source IP address, aka Bug ID CSCuj90227.

← Browse all CVEs View on cve.org ↗