CyberSec.Space Logo
Back to CVE Browser

CVE-2009-0742

HIGH
7.8
CVSS Severity Score
EPSS Score0.0260%
EPSS Percentile13.02th
PublishedFeb 26, 2009
Last ModifiedApr 23, 2026

Vulnerability Description

The username command in Cisco ACE Application Control Engine Module for Catalyst 6500 Switches and 7600 Routers and Cisco ACE 4710 Application Control Engine Appliance stores a cleartext password by default, which allows context-dependent attackers to obtain sensitive information.

Affected Platforms (CPE)

πŸ”Œ
Cisco

Application Control Engine Module

All versions
πŸ”Œ
Cisco

Ace 4710

All versions

References & Advisories

πŸ”— http://www.cisco.com/en/US/products/products_security_advisory09186a0080a7bc82.shtml
πŸ”— http://www.cisco.com/en/US/products/products_security_advisory09186a0080a7bc82.shtml

Related Vulnerabilities

CVE-2009-062010.0

Cisco ACE Application Control Engine Module for Catalyst 6500 Switches and 7600 Routers before A2(1.1) uses default (1) usernames ...

CVE-2009-06229.0

Unspecified vulnerability in Cisco ACE Application Control Engine Module for Catalyst 6500 Switches and 7600 Routers before A2(1.2...

CVE-2009-06237.8

Unspecified vulnerability in Cisco ACE Application Control Engine Module for Catalyst 6500 Switches and 7600 Routers before A2(1.3...

CVE-2009-06257.8

Unspecified vulnerability in Cisco ACE Application Control Engine Module for Catalyst 6500 Switches and 7600 Routers before A2(1.2...