CyberSec.Space Logo
返回 CVE 瀏覽器

CVE-2009-0621

CRITICAL
10.0
CVSS Severity Score
EPSS Score0.1520%
EPSS Percentile21.17th
Published2009年2月26日
Last Modified2026年4月23日

Vulnerability Description

Cisco ACE 4710 Application Control Engine Appliance before A1(8a) uses default (1) usernames and (2) passwords for (a) the administrator, (b) web management, and (c) device management, which makes it easier for remote attackers to perform configuration changes to the Device Manager and other components, or obtain operating-system access.

Affected Platforms (CPE)

🔌
Cisco

Ace 4710

All versions

References & Advisories

🔗 http://www.cisco.com/en/US/products/products_security_advisory09186a0080a7bc82.shtml
🔗 http://www.securityfocus.com/bid/33900
🔗 http://www.cisco.com/en/US/products/products_security_advisory09186a0080a7bc82.shtml
🔗 http://www.securityfocus.com/bid/33900

相關漏洞威脅

CVE-2009-06229.0

Unspecified vulnerability in Cisco ACE Application Control Engine Module for Catalyst 6500 Switches and 7600 Routers before A2(1.2...

CVE-2016-12978.8

The Device Manager GUI in Cisco Application Control Engine (ACE) 4710 A5 before A5(3.1) allows remote authenticated users to bypas...

CVE-2009-06237.8

Unspecified vulnerability in Cisco ACE Application Control Engine Module for Catalyst 6500 Switches and 7600 Routers before A2(1.3...

CVE-2009-06257.8

Unspecified vulnerability in Cisco ACE Application Control Engine Module for Catalyst 6500 Switches and 7600 Routers before A2(1.2...