CyberSec.Space Logo
Back to CVE Browser

CVE-2007-0968

CRITICAL
9.0
CVSS Severity Score
EPSS Score0.0660%
EPSS Percentile13.91th
PublishedFeb 16, 2007
Last ModifiedApr 23, 2026

Vulnerability Description

Unspecified vulnerability in Cisco Firewall Services Module (FWSM) before 2.3(4.7) and 3.x before 3.1(3.1) causes the access control entries (ACE) in an ACL to be improperly evaluated, which allows remote authenticated users to bypass intended certain ACL protections.

Affected Platforms (CPE)

πŸ”Œ
Cisco

Firewall Services Module

= 2.3
πŸ”Œ
Cisco

Firewall Services Module

= 3.1

References & Advisories

πŸ”— http://secunia.com/advisories/24172
πŸ”— http://www.cisco.com/en/US/products/products_security_advisory09186a00807e2481.shtml
πŸ”— http://www.securityfocus.com/bid/22561
πŸ”— http://www.securitytracker.com/id?1017650
πŸ”— http://www.vupen.com/english/advisories/2007/0609
πŸ”— https://exchange.xforce.ibmcloud.com/vulnerabilities/32521
πŸ”— http://secunia.com/advisories/24172
πŸ”— http://www.cisco.com/en/US/products/products_security_advisory09186a00807e2481.shtml

Related Vulnerabilities

CVE-2018-010110.0

A vulnerability in the Secure Sockets Layer (SSL) VPN functionality of the Cisco Adaptive Security Appliance (ASA) Software could ...

CVE-2008-386510.0

Multiple heap-based buffer overflows in the ApiThread function in the firewall service (aka TmPfw.exe) in Trend Micro Network Secu...

CVE-2018-03049.8

A vulnerability in the Cisco Fabric Services component of Cisco FXOS Software and Cisco NX-OS Software could allow an unauthentica...

CVE-2018-03089.8

A vulnerability in the Cisco Fabric Services component of Cisco FXOS Software and Cisco NX-OS Software could allow an unauthentica...