CyberSec.Space Logo
Back to CVE Browser

CVE-2009-0620

CRITICAL
10.0
CVSS Severity Score
EPSS Score0.1650%
EPSS Percentile8.54th
PublishedFeb 26, 2009
Last ModifiedApr 23, 2026

Vulnerability Description

Cisco ACE Application Control Engine Module for Catalyst 6500 Switches and 7600 Routers before A2(1.1) uses default (1) usernames and (2) passwords for (a) the administrator and (b) web management, which makes it easier for remote attackers to perform configuration changes or obtain operating-system access.

Affected Platforms (CPE)

πŸ“¦
Cisco

Application Control Engine Module

<= 0

References & Advisories

πŸ”— http://www.cisco.com/en/US/products/products_security_advisory09186a0080a7bc82.shtml
πŸ”— http://www.securityfocus.com/bid/33900
πŸ”— http://www.cisco.com/en/US/products/products_security_advisory09186a0080a7bc82.shtml
πŸ”— http://www.securityfocus.com/bid/33900

Related Vulnerabilities

CVE-2009-06229.0

Unspecified vulnerability in Cisco ACE Application Control Engine Module for Catalyst 6500 Switches and 7600 Routers before A2(1.2...

CVE-2009-06237.8

Unspecified vulnerability in Cisco ACE Application Control Engine Module for Catalyst 6500 Switches and 7600 Routers before A2(1.3...

CVE-2009-06257.8

Unspecified vulnerability in Cisco ACE Application Control Engine Module for Catalyst 6500 Switches and 7600 Routers before A2(1.2...

CVE-2009-07427.8

The username command in Cisco ACE Application Control Engine Module for Catalyst 6500 Switches and 7600 Routers and Cisco ACE 4710...